CVE-2017-14875

HIGH

Android for MSM <2017-05-23 - Heap Overread

Title source: llm
STIX 2.1

Description

In the handler for the ioctl command VIDIOC_MSM_ISP_DUAL_HW_LPM_MODE in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-05-23, a heap overread vulnerability exists.

References (2)

Core 2

Scores

CVSS v3 7.5
EPSS 0.0054
EPSS Percentile 41.5%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-119 CWE-200
Status published
Products (1)
google/android
Published Mar 30, 2018
Tracked Since Feb 18, 2026