Back to search
CVE-2017-0540
Published: Apr 7, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
A remote code execution vulnerability in libhevc in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution within the context of the Mediaserver process. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-33966031.
| Vendor | Product | Versions |
|---|---|---|
Google Inc. | Android | affected Android-5.0.2affected Android-5.1.1affected Android-6.0affected Android-6.0.1affected Android-7.0+1 more versions |
References
https://source.android.com/security/bulletin/2017-04-01
x_refsource_CONFIRM
https://source.android.com/security/bulletin/2017-07-01
x_refsource_CONFIRM
97330
vdb-entry
x_refsource_BID
1038201
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now