CVE-2017-8253
HIGHQualcomm Android - Memory Corruption via Invalid Master from Userspace
Title source: llmDescription
In all Qualcomm products with Android releases from CAF using the Linux kernel, kernel memory can potentially be overwritten if an invalid master is sent from userspace.
References (2)
Core 2
Core References
Patch, Vendor Advisory x_refsource_confirm
https://source.android.com/security/bulletin/2017-07-01
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/99465
Scores
CVSS v3
7.8
EPSS
0.0004
EPSS Percentile
11.1%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-770
Status
published
Products (2)
google/android
Qualcomm, Inc./All Qualcomm products
All Android releases from CAF using the Linux kernel
Published
Aug 18, 2017
Tracked Since
Feb 18, 2026