Information Disclosure Vulnerability in Pixel Thermal Driver by Google
CVE-2017-6275

7.5HIGH

Key Information:

Vendor: Nvidia
Status: Pixel
Vendor: CVE Published:; 14 November 2017

Summary

An information disclosure vulnerability has been identified in the Thermal Driver of Google Pixel devices. This flaw arises from inadequate bounds checking, which may allow attackers to read information from an arbitrary kernel address. As a consequence, sensitive data could potentially be exposed, compromising the security of the affected devices. It is essential for users to remain vigilant and update their devices to mitigate this risk.

Affected Version(s)

Pixel NA

References

https://source.android.com/security/bulletin/pixel/2017-1...

x_refsource_CONFIRM

https://nvidia.custhelp.com/app/answers/detail/a_id/4804

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 14, 2017
Vulnerability Reserved
Feb 23, 2017