CVE-2017-18154

HIGH

Android - Memory Corruption via Crafted Binder Request

Title source: llm
STIX 2.1

Description

A crafted binder request can cause an arbitrary unmap in MediaServer in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.

References (2)

Core 2

Scores

CVSS v3 7.8
EPSS 0.0017
EPSS Percentile 6.7%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (1)
google/android
Published Jun 06, 2018
Tracked Since Feb 18, 2026