CVE-2017-0582
Google Nexus 9 SensorHub Firmware Downgrade
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
An elevation of privilege vulnerability in the HTC OEM fastboot command could enable a local malicious application to execute arbitrary code within the context of the sensor hub. This issue is rated as Moderate because it first requires exploitation of separate vulnerabilities. Product: Android. Versions: Kernel-3.10. Android ID: A-33178836.
Vulnerabilidad de elevación de privilegios en el comando HTC OEM fastboot podría permitir que una aplicación maliciosa local ejecute código arbitrario dentro del contexto del concentrador de sensores. Este problema se califica como moderado porque primero requiere la explotación de vulnerabilidades separadas. Producto: Android. Versiones: Kernel-3.10. ID de Android: A-33178836.
Google Nexus 9 SensorHub firmware suffers from a downgrade vulnerability.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2016-11-29 CVE Reserved
- 2017-04-07 CVE Published
- 2024-08-05 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/97356 | Third Party Advisory | |
| http://www.securitytracker.com/id/1038201 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://source.android.com/security/bulletin/2017-04-01 | 2019-10-03 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | 3.10 Search vendor "Linux" for product "Linux Kernel" and version "3.10" | - |
Affected
| ||||||