CVE Vulnerabilities

CVE-2017-0544

Operation on a Resource after Expiration or Release

Published: Apr 07, 2017 | Modified: Oct 03, 2019
CVSS 3.x
7.8
HIGH
Source:
NVD
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

An elevation of privilege vulnerability in CameraBase could enable a local malicious application to execute arbitrary code. This issue is rated as High because it is a local arbitrary code execution in a privileged process. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-31992879.

Weakness

The software uses, accesses, or otherwise operates on a resource after that resource has been expired, released, or revoked.

Affected Software

Name Vendor Start Version End Version
Android Google 4.0 4.0
Android Google 4.0.1 4.0.1
Android Google 4.0.2 4.0.2
Android Google 4.0.3 4.0.3
Android Google 4.0.4 4.0.4
Android Google 4.1 4.1
Android Google 4.1.2 4.1.2
Android Google 4.2 4.2
Android Google 4.2.1 4.2.1
Android Google 4.2.2 4.2.2
Android Google 4.3 4.3
Android Google 4.3.1 4.3.1
Android Google 4.4 4.4
Android Google 4.4.1 4.4.1
Android Google 4.4.2 4.4.2
Android Google 4.4.3 4.4.3
Android Google 4.4.4 4.4.4
Android Google 5.0 5.0
Android Google 5.0.1 5.0.1
Android Google 5.0.2 5.0.2
Android Google 5.1 5.1
Android Google 5.1.0 5.1.0
Android Google 5.1.1 5.1.1
Android Google 6.0 6.0
Android Google 6.0.1 6.0.1
Android Google 7.0 7.0
Android Google 7.1.0 7.1.0
Android Google 7.1.1 7.1.1

References