An elevation of privilege vulnerability in the kernel Qualcomm power driver could enable a local malicious application to execute arbitrary…
google_android·CWE-670·Published 2017-05-12
An elevation of privilege vulnerability in the kernel Qualcomm power driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: N/A. Android ID: A-35392981. References: QC-CR#826589.
An elevation of privilege vulnerability in the kernel Qualcomm power driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: N/A. Android ID: A-35392981. References: QC-CR#826589.
Una vulnerabilidad de elevación de privilegios en el controlador de potencia de Qualcomm del kernel podría habilitar a una aplicación maliciosa local para ejecutar código arbitrario dentro del contexto del kernel. Este problema es valorado como Crítico debido a la posibilidad de un compromiso local permanente del dispositivo, que puede requerir actualizar de nuevo el sistema operativo para reparar el dispositivo. Producto: Android. Versiones: N/A. ID de Android: A-35392981. Referencias: QC-CR#826589.
| Version | Type | Source | Base | Exp | Impact | Vector |
|---|---|---|---|---|---|---|
| 2.0 | Primary | NVD | 9.3 | 8.6 | 10.0 | AV:N/AC:M/Au:N/C:C/I:C/A:C |
| 3.0 | Primary | NVD | 7.8 | 1.8 | 5.9 | CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |