CVE-2017-0478

HIGH

Google Android - Remote Code Execution

Title source: rule

Description

A remote code execution vulnerability in the Framesequence library could enable an attacker using a specially crafted file to execute arbitrary code in the context of an unprivileged process. This issue is rated as High due to the possibility of remote code execution in an application that uses the Framesequence library. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-33718716.

Exploits (3)

nomisec WORKING POC

by likekabin · poc

https://github.com/likekabin/CVE-2017-0478

View Code ZIP pw:eip

nomisec WORKING POC

by bingghost · poc

https://github.com/bingghost/CVE-2017-0478

View Code ZIP pw:eip

inthewild

poc

https://github.com/jioundai/cve-2017-0478

View on inthewild

References (5)

[Vendor Advisory] https://source.android.com/security/bulletin/2017-03-01

[Various Sources] https://github.com/JiounDai/CVE-2017-0478

[Vendor Advisory] https://source.android.com/security/bulletin/2017-03-01.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/96762

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1037968

Scores

CVSS v3 7.8

EPSS 0.0646

EPSS Percentile 91.1%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

Status published

Products (17)

google/android 5.0

google/android 5.0.1

google/android 5.0.2

google/android 5.1

google/android 5.1.0

google/android 5.1.1

google/android 6.0

google/android 6.0.1

google/android 7.0

google/android 7.1.0

... and 7 more

Published Mar 08, 2017

Tracked Since Feb 18, 2026