CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-15824

In Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05, the function UpdateDeviceStatus() writes a local stack buffer without initialization to flash memory using WriteToPartition() which may potentially leak memory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.5%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 2.1

References

https://source.android.com/security/bulletin/pixel/2018-06-01#qualcomm-components
https://source.android.com/security/bulletin/pixel/2018-06-01#qualcomm-components

Products affected by CVE-2017-15824

Google » Android » Version: N/A

cpe:2.3:o:google:android:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-15824

Products

Pricing

Contact Us