CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-14892

In the function msm_pcm_hw_params() in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-09-19, the return value of q6asm_open_shared_io() is not checked properly potentially leading to a possible dangling pointer access.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 2.3%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 4.6

References

https://source.android.com/security/bulletin/pixel/2018-02-01
https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=a3bed71777c133cfec78b5140877c6ba109961a0
https://source.android.com/security/bulletin/pixel/2018-02-01
https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=a3bed71777c133cfec78b5140877c6ba109961a0

Products affected by CVE-2017-14892

Google » Android » Version: N/A

cpe:2.3:o:google:android:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-14892

Products

Pricing

Contact Us