CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-0405

A remote code execution vulnerability in Surfaceflinger could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution within the context of the Surfaceflinger process. Product: Android. Versions: 7.0, 7.1.1. Android ID: A-31960359.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.014

EPSS Ranking 79.5%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 9.3

References

http://www.securityfocus.com/bid/96048
http://www.securitytracker.com/id/1037798
https://source.android.com/security/bulletin/2017-02-01.html
http://www.securityfocus.com/bid/96048
http://www.securitytracker.com/id/1037798
https://source.android.com/security/bulletin/2017-02-01.html

Products affected by CVE-2017-0405

Google » Android » Version: 7.0

cpe:2.3:o:google:android:7.0
Google » Android » Version: 7.1.0

cpe:2.3:o:google:android:7.1.0
Google » Android » Version: 7.1.1

cpe:2.3:o:google:android:7.1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-0405

Products

Pricing

Contact Us