CVE-2011-1352
published 2013-02-05CVE-2011-1352: The PowerVR SGX driver in Android before 2.3.6 allows attackers to gain root privileges via an application that triggers kernel memory corruption using crafted…
PriorityP428medium6.9CVSS 2.0
AVLACMAuNCCICAC
EXPLOIT
EPSS
0.26%
17.0th percentile
The PowerVR SGX driver in Android before 2.3.6 allows attackers to gain root privileges via an application that triggers kernel memory corruption using crafted user data to the pvrsrvkm device.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | <= 2.3.5 | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — |
CVSS provenance
nvdv2.06.9MEDIUMAV:L/AC:M/Au:N/C:C/I:C/A:C
osv6.9MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-gm7f-v33r-q3v9: The PowerVR SGX driver in Android before 2
ghsa_unreviewed·2022-05-17
CVE-2011-1352 [MEDIUM] CWE-119 GHSA-gm7f-v33r-q3v9: The PowerVR SGX driver in Android before 2
The PowerVR SGX driver in Android before 2.3.6 allows attackers to gain root privileges via an application that triggers kernel memory corruption using crafted user data to the pvrsrvkm device.
OSV
CVE-2011-1352: The PowerVR SGX driver in Android before 2
osv·2013-02-05·CVSS 6.9
CVE-2011-1352 [MEDIUM] CVE-2011-1352: The PowerVR SGX driver in Android before 2
The PowerVR SGX driver in Android before 2.3.6 allows attackers to gain root privileges via an application that triggers kernel memory corruption using crafted user data to the pvrsrvkm device.
No detection rules found.
No writeups or analysis indexed.
2013-02-05
Published