CVE-2017-6275

HIGH

Nvidia Pixel - Information Disclosure via Thermal Driver Missing Bounds Check

Title source: llm
STIX 2.1

Description

An information disclosure vulnerability exists in the Thermal Driver, where a missing bounds checking in the thermal driver could allow a read from an arbitrary kernel address. This issue is rated as moderate. Product: Pixel. Versions: N/A. Android ID: A-34702397. References: N-CVE-2017-6275.

References (2)

Core 2
Core References
Issue Tracking, Vendor Advisory x_refsource_confirm
https://source.android.com/security/bulletin/pixel/2017-11-01#announcements
Vendor Advisory x_refsource_confirm
https://nvidia.custhelp.com/app/answers/detail/a_id/4804

Scores

CVSS v3 7.5
EPSS 0.0041
EPSS Percentile 33.1%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-200
Status published
Products (2)
google/android
Nvidia Corporation/Pixel
Published Nov 14, 2017
Tracked Since Feb 18, 2026