← Voltar para CVEs
CVE-2017-0563
N/ADescricao
An elevation of privilege vulnerability in the HTC touchscreen driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: Kernel-3.10. Android ID: A-32089409.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado4/7/2017
Ultima modificacao4/20/2025
Fontenvd
Avistamentos honeypot0
Produtos afetados
linux:linux_kernel
Fraquezas (CWE)
CWE-345
Referencias
http://seclists.org/fulldisclosure/2017/May/19(security@android.com)
http://www.securityfocus.com/bid/97342(security@android.com)
http://www.securitytracker.com/id/1038201(security@android.com)
https://alephsecurity.com/vulns/aleph-2017009(security@android.com)
https://github.com/alephsecurity/PoCs/tree/master/CVE-2017-0563(security@android.com)
https://source.android.com/security/bulletin/2017-04-01(security@android.com)
http://seclists.org/fulldisclosure/2017/May/19(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/97342(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1038201(af854a3a-2127-422b-91ae-364da2661108)
https://alephsecurity.com/vulns/aleph-2017009(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/alephsecurity/PoCs/tree/master/CVE-2017-0563(af854a3a-2127-422b-91ae-364da2661108)
https://source.android.com/security/bulletin/2017-04-01(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.