CVE-2017-0448: Infoleak
First published: Mon Feb 06 2017(Updated: )
An information disclosure vulnerability in the NVIDIA video driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user permission. Product: Android. Versions: Kernel-3.10. Android ID: A-32721029. References: N-CVE-2017-0448.
Credit: security@android.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Android | ||
| Android | <=7.1.1 | |
| Linux kernel | =3.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-0448?
CVE-2017-0448 is rated as High due to its potential to allow local malicious applications to access sensitive data without user permission.
What systems are affected by CVE-2017-0448?
CVE-2017-0448 affects Android versions up to 7.1.1 and the Linux Kernel version 3.10.
How do I fix CVE-2017-0448?
To fix CVE-2017-0448, update the affected systems to the latest security patches provided by the vendor.
What type of vulnerability is CVE-2017-0448?
CVE-2017-0448 is an information disclosure vulnerability in the NVIDIA video driver.
Can CVE-2017-0448 be exploited remotely?
No, CVE-2017-0448 requires local access for exploitation.
- agent/type
- agent/first-publish-date
- agent/remedy
- agent/references
- agent/author
- agent/severity
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/event
- agent/last-modified-date
- agent/source
- agent/tags
- agent/softwarecombine
- collector/android-source
- source/Android
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/google
- canonical/android
- version/android/7.1.1
- vendor/linux
- canonical/linux kernel
- version/linux kernel/3.10