CVE-2017-0627
Description
An information disclosure vulnerability in the kernel UVC driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-33300353.
CWE
- (none)
Affected
- Google Inc. / Android — v=Kernel-3.10 [affected]; v=Kernel-3.18 [affected]
CVSS
- (none)
References
- https://usn.ubuntu.com/3674-1/ vendor-advisory, x_refsource_UBUNTU
- https://source.android.com/security/bulletin/2017-05-01 x_refsource_CONFIRM
- https://usn.ubuntu.com/3674-2/ vendor-advisory, x_refsource_UBUNTU
- http://www.securityfocus.com/bid/98205 vdb-entry, x_refsource_BID
Source
cvelistV5-main/cves/2017/0xxx/CVE-2017-0627.json