Vulnerability Details CVE-2017-0537
An information disclosure vulnerability in the kernel USB gadget driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.18. Android ID: A-31614969.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.4%
CVSS Severity
CVSS v3 Score 4.7
CVSS v2 Score 2.6
References
- http://www.securityfocus.com/bid/96831
- http://www.securitytracker.com/id/1037968
- https://source.android.com/security/bulletin/2017-03-01
- https://source.android.com/security/bulletin/2017-03-01.html
- http://www.securityfocus.com/bid/96831
- http://www.securitytracker.com/id/1037968
- https://source.android.com/security/bulletin/2017-03-01
Products affected by CVE-2017-0537
-
cpe:2.3:o:linux:linux_kernel:3.18