{ "name": "CVE-2017-0331", "CVE": [ [ "CVE-2017-0331", "Bulletin-CVE-2017-0331" ] ], "Coordinated_disclosure": "unknown", "Categories": [ "Elevation of privilege vulnerability in NVIDIA video driver" ], "Details": [ [ "An elevation of privilege vulnerability in the NVIDIA video driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: Kernel 3.10. Android ID: A-34113000. References: N-CVE-2017-0331.", "NIST-CVE-2017-0331" ] ], "Discovered_on": [], "Discovered_by": [ [ "Nathan Crandall (@natecray) of Tesla Motors Product Security Team", "Discovery-CVE-2017-0331" ] ], "Submission": [ { "by": "dcc52", "on": "2019-07-26" } ], "Reported_on": [ [ "2017-05-01", "Bulletin-CVE-2017-0331" ] ], "Fixed_on": [], "Fix_released_on": [], "Affected_versions": [], "Affected_devices": [], "Affected_versions_regexp": [ "" ], "Affected_manufacturers": [ [ "NVIDIA", "Bulletin-CVE-2017-0331" ] ], "Fixed_versions": [], "Fixed_versions_regexp": [ "" ], "references": { "A-34113000*": {}, "N-CVE-2017-0331": {}, "NIST-CVE-2017-0331": { "url": "https://nvd.nist.gov/vuln/data-feeds" }, "Bulletin-CVE-2017-0331": { "url": "https://source.android.com/security/bulletin/2017-05-01.html" }, "Discovery-CVE-2017-0331": { "url": "https://source.android.com/security/overview/acknowledgements" } }, "Surface": [ "local", "app" ], "Vector": [ "memory-corruption" ], "Target": [ "driver" ], "Channel": [ "app-execution" ], "Condition": [ "affected-app-installed" ], "Privilege": [ "kernel" ], "CWE": [ [ "CWE-264", "NIST-CVE-2017-0331" ] ] }