Vulnerability Details CVE-2017-13156
An elevation of privilege vulnerability in the Android system (art). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-64211847.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.66
EPSS Ranking 98.4%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 7.2
References
- http://packetstormsecurity.com/files/155189/Android-Janus-APK-Signature-Bypass.html
- http://www.securityfocus.com/bid/102109
- https://source.android.com/security/bulletin/2017-12-01
- http://packetstormsecurity.com/files/155189/Android-Janus-APK-Signature-Bypass.html
- http://www.securityfocus.com/bid/102109
- https://source.android.com/security/bulletin/2017-12-01
Products affected by CVE-2017-13156
-
cpe:2.3:o:google:android:5.1.1
-
cpe:2.3:o:google:android:6.0
-
cpe:2.3:o:google:android:6.0.1
-
cpe:2.3:o:google:android:7.0
-
cpe:2.3:o:google:android:7.1.1
-
cpe:2.3:o:google:android:7.1.2
-
cpe:2.3:o:google:android:8.0