Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2017-0381

Published: 12/01/2017 Updated: 03/10/2019
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Google

Vulnerability Summary

An information disclosure vulnerability in silk/NLSF_stabilize.c in libopus in Mediaserver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access sensitive data without permission. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1. Android ID: A-31607432.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

google android 6.0

google android 6.0.1

google android 5.0

google android 5.0.1

google android 7.0

google android 7.1.0

google android 5.1.0

google android 5.1.1

google android 5.0.2

google android 5.1

Vendor Advisories

Debian CVElist Bug Report Logs: opus: CVE-2017-0381: Memory corruption during media file and data processing
Debian Bug report logs - #851612 opus: CVE-2017-0381: Memory corruption during media file and data processing Package: src:opus; Maintainer for src:opus is Ron Lee <ron@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 16 Jan 2017 20:39:02 UTC Severity: grave Tags: patch, security, upstrea ...
Red Hat: CVE-2017-0381
An information disclosure vulnerability in silk/NLSF_stabilizec in libopus in Mediaserver could enable a local malicious application to access data outside of its permission levels This issue is rated as Moderate because it could be used to access sensitive data without permission Product: Android Versions: 502, 511, 60, 601, 70, 71 A ...

References

CWE-190https://source.android.com/security/bulletin/2017-01-01.htmlhttps://android.googlesource.com/platform/external/libopus/+/0d052d64480a30e83fcdda80f4774624e044beb7http://www.securityfocus.com/bid/95248https://security.gentoo.org/glsa/201702-21http://www.securitytracker.com/id/1039427https://support.apple.com/HT208144https://support.apple.com/HT208115https://support.apple.com/HT208113https://support.apple.com/HT208112https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851612https://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2017-0381
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook