CVE-2017-0860 — INC Android vulnerability

8 documents4 sources

Severity

5.3MEDIUMNVD

EPSS

0.0%

top 96.68%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Google INC Android Google Android

Timeline

PublishedNov 16

Latest updateMay 13

Description

An elevation of privilege vulnerability in the Android system (inputdispatcher). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-31097064.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:LExploitability: 1.8 | Impact: 3.4

Affected Packages2 packages

▶NVDgoogle/android7 versions+6

▶CVEListV5google_inc/android7 versions+6

🔴Vulnerability Details

GHSA

GHSA-7mc9-c8v4-28h9: An elevation of privilege vulnerability in the Android system (inputdispatcher)↗2022-05-13

▶

CVEList

CVE-2017-0860: An elevation of privilege vulnerability in the Android system (inputdispatcher)↗2017-11-16

▶

💬Community

Bugzilla

CVE-2017-5056 chromium-browser: use after free in blink↗2017-03-30

▶

Bugzilla

CVE-2017-5052 chromium-browser: bad cast in blink↗2017-03-30

▶

Bugzilla

CVE-2017-5054 chromium-browser: heap buffer overflow in v8↗2017-03-30

▶

Bugzilla

CVE-2017-5053 chromium-browser: out of bounds memory access in v8↗2017-03-30

▶

Bugzilla

CVE-2017-5055 chromium-browser: use after free in printing↗2017-03-30

▶