Elevation of Privilege in NVIDIA Sound Driver for Android Devices
CVE-2017-6247

7.8HIGH

Key Information:

Vendor: Nvidia
Status: Android
Vendor: CVE Published:; 6 July 2017

What is CVE-2017-6247?

A security vulnerability in the NVIDIA sound driver for Android can allow a local malicious application to execute arbitrary code with kernel-level privileges. By exploiting this flaw, an attacker could gain elevated access, potentially leading to compromised system integrity. Users of affected Android devices should ensure they are using the latest software updates provided by NVIDIA and follow security best practices to mitigate risks. More information can be found in the security bulletin and vulnerability databases.

Affected Version(s)

Android NA

References

https://source.android.com/security/bulletin/2017-06-01

x_refsource_CONFIRM

http://www.securityfocus.com/bid/98876

vdb-entryx_refsource_BID

http://www.securitytracker.com/id/1038623

vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 6, 2017
Vulnerability Reserved
Feb 23, 2017

Nvidia

What is CVE-2017-6247?

Affected Version(s)

References

CVSS V3.1

Timeline