CVE-2017-9682

MEDIUM

Qualcomm Android - Use After Free

Title source: llm

Description

In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition in two KGSL driver functions can lead to a Use After Free condition.

References (3)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/100213

[Vendor Advisory] https://source.android.com/security/bulletin/2017-06-01

[Vendor Advisory] https://source.android.com/security/bulletin/2017-08-01

Scores

CVSS v3 4.7

EPSS 0.0006

EPSS Percentile 17.8%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N

Details

CWE

CWE-362 CWE-200

Status published

Products (2)

google/android

Qualcomm, Inc./All Qualcomm products < All Android releases from CAF using the Linux kernel

Published Aug 18, 2017

Tracked Since Feb 18, 2026