CVE-2017-11019
CVE-2017-11019
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.1%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
05 Dec 2017Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the fd allocated during the get_metadata was not closed even though the buffer allocated to the fd was freed. This resulted in a failure during exit sequence.
Affected products
Qualcomm, Inc. · Android for MSM, Firefox OS for MSM, QRD Android