CVE-2014-4322
Nexus 5 Android 5.0 - Local Privilege Escalation
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
5Exploited in Wild
-Decision
Descriptions
drivers/misc/qseecom.c in the QSEECOM driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not validate certain offset, length, and base values within an ioctl call, which allows attackers to gain privileges or cause a denial of service (memory corruption) via a crafted application.
drivers/misc/qseecom.c en el driver QSEECOM del Kernel de Linux 3.x utilizada en las contribuciones de Android Qualcomm Innovation Center (QuIC) para los dispositivos MSM y otros productos, no valida el desplazamiento, longitud, y valores base dentro de la llamada ioctl , lo cual permite a atacantes obtener privilegios o causar una denegación de servicio (corrupción de memoria) a través de una aplicación modificada.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2014-06-18 CVE Reserved
- 2014-12-24 CVE Published
- 2015-01-06 First Exploit
- 2023-03-08 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-787: Out-of-bounds Write
CAPEC
References (6)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/35711 | 2015-01-06 | |
| https://github.com/koozxcv/CVE-2014-4322 | 2016-03-23 | |
| https://github.com/retme7/CVE-2014-4322_poc | 2024-07-09 | |
| https://github.com/laginimaineb/cve-2014-4322 | 2024-10-01 | |
| https://github.com/askk/CVE-2014-4322_adaptation | 2024-01-16 |
| URL | Date | SRC |
|---|---|---|
| https://www.codeaurora.org/projects/security-advisories/memory-corruption-qseecom-driver-cve-2014-4322 | 2020-08-14 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 3.0.0 <= 3.18.1 Search vendor "Linux" for product "Linux Kernel" and version " >= 3.0.0 <= 3.18.1" | - |
Affected
| ||||||