CVE Vulnerabilities

CVE-2017-0419

Published: Feb 08, 2017 | Modified: Oct 03, 2019
CVSS 3.x
7.8
HIGH
Source:
NVD
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

An elevation of privilege vulnerability in Audioserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated capabilities, which are not normally accessible to a third-party application. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-32220769.

Affected Software

Name Vendor Start Version End Version
Android Google 4.0 4.0
Android Google 4.0.1 4.0.1
Android Google 4.0.2 4.0.2
Android Google 4.0.3 4.0.3
Android Google 4.0.4 4.0.4
Android Google 4.1 4.1
Android Google 4.1.2 4.1.2
Android Google 4.2 4.2
Android Google 4.2.1 4.2.1
Android Google 4.2.2 4.2.2
Android Google 4.3 4.3
Android Google 4.3.1 4.3.1
Android Google 4.4 4.4
Android Google 4.4.1 4.4.1
Android Google 4.4.2 4.4.2
Android Google 4.4.3 4.4.3
Android Google 4.4.4 4.4.4
Android Google 5.0 5.0
Android Google 5.0.1 5.0.1
Android Google 5.0.2 5.0.2
Android Google 5.1 5.1
Android Google 5.1.0 5.1.0
Android Google 5.1.1 5.1.1
Android Google 6.0 6.0
Android Google 6.0.1 6.0.1
Android Google 7.0 7.0
Android Google 7.1.0 7.1.0
Android Google 7.1.1 7.1.1
Android Ubuntu trusty *
Android Ubuntu vivid/stable-phone-overlay *
Android Ubuntu xenial *
Android Ubuntu yakkety *
Android Ubuntu zesty *

References