CVE-2017-11041

Опубликовано: 21 сент. 2017

Источник: nvd

CVSS3: 7.8

CVSS2: 9.3

EPSS Низкий

Описание

In all Qualcomm products with Android releases from CAF using the Linux kernel, an output buffer is accessed in one thread and can be potentially freed in another.

Ссылки

http://www.securityfocus.com/bid/100658
Third Party Advisory
VDB Entry
https://source.android.com/security/bulletin/2017-09-01
Vendor Advisory
https://source.android.com/security/bulletin/2018-02-01
http://www.securityfocus.com/bid/100658
Third Party Advisory
VDB Entry
https://source.android.com/security/bulletin/2017-09-01
Vendor Advisory
https://source.android.com/security/bulletin/2018-02-01

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:*:*:*:*:*:*:*:*

Версия до 8.0 (включая)

EPSS

Процентиль: 35%

0.00145

Низкий

7.8 High

CVSS3

9.3 Critical

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-ff4w-rgwj-fx2j