CVE-2017-0744

MEDIUM

Android - Elevation of Privilege in NVIDIA Firmware Processing Code

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-0744. PoCs published by codecat007.

AI-analyzed exploit summary The repository provides a high-level description of CVE-2017-0744, a firmware replacement vulnerability in Android, but lacks functional exploit code. It references a PoC in a 'readme' file, which only describes the method without technical details or code.

Description

An elevation of privilege vulnerability in the NVIDIA firmware processing code. Product: Android. Versions: Android kernel. Android ID: A-34112726. References: N-CVE-2017-0744.

Exploits (1)

github WRITEUP 8 stars

by codecat007 · cpoc

https://github.com/codecat007/cvehub/tree/main/android/kernel/CVE-2017-0744

View Code ZIP pw:eip

The repository provides a high-level description of CVE-2017-0744, a firmware replacement vulnerability in Android, but lacks functional exploit code. It references a PoC in a 'readme' file, which only describes the method without technical details or code.

Classification

Writeup 80%

Attack Type

Lpe

Complexity

Moderate

Reliability

Theoretical

Target: Android kernel (firmware replacement)

No auth needed

Prerequisites: physical access or root privileges to replace firmware files

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548 - Abuse Elevation Control Mechanism

devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (2)

Core 2

Core References

Patch, Vendor Advisory x_refsource_confirm

https://source.android.com/security/bulletin/2017-08-01

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/100210

Scores

CVSS v3 5.3

EPSS 0.0002

EPSS Percentile 4.8%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Details

Status published

Products (1)

google/android

Published Apr 05, 2018

Tracked Since Feb 18, 2026