ID CVE-2014-9949
Summary In TrustZone in all Android releases from CAF using the Linux kernel, an Untrusted Pointer Dereference vulnerability could potentially exist.
References
Vulnerable Configurations
  • cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
    cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
CVSS
Base: 9.3 (as of 08-06-2017 - 17:46)
Impact:
Exploitability:
CWE CWE-476
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:C/I:C/A:C
refmap via4
bid 98250
confirm https://source.android.com/security/bulletin/2017-05-01
Last major update 08-06-2017 - 17:46
Published 06-06-2017 - 14:29
Last modified 08-06-2017 - 17:46
Back to Top