← Back to CVE List

CVE-2017-15325

Published: 2018-03-23T16:29Z
Last Modified: 2024-11-21T03:14Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
The Bdat driver of Prague smart phones with software versions earlier than Prague-AL00AC00B211, versions earlier than Prague-AL00BC00B211, versions earlier than Prague-AL00CC00B211, versions earlier than Prague-TL00AC01B211, versions earlier than Prague-TL10AC01B211 has integer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP and execute it as a specific privilege; the APP can then send a specific parameter to the driver of the smart phone, causing arbitrary code execution. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt