Information Disclosure Vulnerability in NVIDIA Video Driver for Android
CVE-2017-0326

5.5MEDIUM

Key Information:

Vendor: Nvidia
Status: Android
Vendor: CVE Published:; 7 July 2017

What is CVE-2017-0326?

An information disclosure vulnerability exists in the NVIDIA Video Driver associated with the Tegra Display Controller. Due to an out-of-bounds read function, this issue can result in unintentional exposure of sensitive information. This vulnerability affects the Android platform, potentially compromising the security of devices utilizing this driver.

Affected Version(s)

Android NA

References

https://source.android.com/security/bulletin/2017-07-01

x_refsource_CONFIRM

http://www.securityfocus.com/bid/99477

vdb-entryx_refsource_BID

http://nvidia.custhelp.com/app/answers/detail/a_id/4561

x_refsource_CONFIRM

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 7, 2017
Vulnerability Reserved
Nov 23, 2016

Nvidia

What is CVE-2017-0326?

Affected Version(s)

References

CVSS V3.1

Timeline