CVE-2017-0607

HIGH Year: 2017
CVSS v3 Score
7.0
High
CVSS v2 Score
7.6
High
Weakness Type
CWE-704
View all →

Vulnerability Description

An elevation of privilege vulnerability in the Qualcomm sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.18. Android ID: A-35400551. References: QC-CR#1085928.

Related Vulnerabilities

CVE-2019-12693

MEDIUM
CVSS:6.8(Medium)

A vulnerability in the Secure Copy (SCP) feature of Cisco Adaptive Security Appliance (ASA) Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. The vul...

CWE-7042019

CVE-2022-21786

MEDIUM
CVSS:6.7(Medium)

In audio DSP, there is a possible memory corruption due to improper casting. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed fo...

CWE-7042022

CVE-2015-5219

HIGH
CVSS:7.5(High)

The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions from a precision value to a double, which allows remote attackers to cause a denial of service (infini...

CWE-7042015

CVE-2017-13888

HIGH
CVSS:7.5(High)

In iOS before 11.2, a type confusion issue was addressed with improved memory handling.

CWE-7042017

CVE-2018-12453

HIGH
CVSS:7.5(High)

Type confusion in the xgroupCommand function in t_stream.c in redis-server in Redis before 5.0 allows remote attackers to cause denial-of-service via an XGROUP command in which the key is not a stream...

CWE-7042018

CVE-2018-12793

MEDIUM
CVSS:6.5(Medium)

Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have a Type Confusion vulnerability. Successful exploitation could lead to arbi...

CWE-7042018