exploitDog

CVE-2017-6276

Опубликовано: 06 дек. 2017

Источник: nvd

CVSS3: 7.8

CVSS2: 7.2

EPSS Низкий

Описание

NVIDIA mediaserver contains a vulnerability where it is possible a use after free malfunction can occur due to an incorrect bounds check which could enable unauthorized code execution and possibly lead to elevation of privileges. This issue is rated as high. Product: Android. Version: N/A. Android: A-63802421. References: N-CVE-2017-6276.

Ссылки

http://www.securityfocus.com/bid/102106
Third Party Advisory
VDB Entry
https://source.android.com/security/bulletin/2017-12-01
Vendor Advisory
http://www.securityfocus.com/bid/102106
Third Party Advisory
VDB Entry
https://source.android.com/security/bulletin/2017-12-01
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

EPSS

Процентиль: 6%

0.00025

Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-416

Связанные уязвимости

GHSA-8rvv-wcx9-q5mr

CVSS3: 7.8

github

больше 3 лет назад

NVIDIA mediaserver contains a vulnerability where it is possible a use after free malfunction can occur due to an incorrect bounds check which could enable unauthorized code execution and possibly lead to elevation of privileges. This issue is rated as high. Product: Android. Version: N/A. Android: A-63802421. References: N-CVE-2017-6276.

EPSS

Процентиль: 6%

0.00025

Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-416