CVE-2017-0455
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
An information disclosure vulnerability in the Qualcomm bootloader could help to enable a local malicious application to to execute arbitrary code within the context of the bootloader. This issue is rated as High because it is a general bypass for a bootloader level defense in depth or exploit mitigation technology. Product: Android. Versions: Kernel-3.18. Android ID: A-32370952. References: QC-CR#1082755.
Una vulnerabilidad de divulgación de información en el gestor de arranque de Qualcomm podría ayudar a una aplicación local maliciosa ejecutar código arbitrario en el contexto del gestor de arranque. Este problema está calificado como High porque es una elusión general para el nivel de defensa de un gestor de arranque de la tecnología depth o exploit migration. Producto: Android. Versiones: Kernel-3.18. ID de Android: A-32370952. Referencias: QC-CR#1082755.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2016-11-29 CVE Reserved
- 2017-03-08 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/96812 | Vdb Entry | |
| http://www.securitytracker.com/id/1037968 | Vdb Entry | |
| https://source.android.com/security/bulletin/2017-03-01 | X_refsource_confirm |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://source.android.com/security/bulletin/2017-03-01.html | 2017-07-17 | |
| https://source.codeaurora.org/quic/la/kernel/lk/commit/?id=2c00928b4884fdb0b1661bcc530d7e68c9561a2f | 2017-07-17 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 3.18 Search vendor "Linux" for product "Linux Kernel" and version "3.18" | - |
Affected
| ||||||