CVE-2017-3748 : On Lenovo VIBE mobile phones, improper access controls on the nac_server component can be abused in conjunction with CVE

On Lenovo VIBE mobile phones, improper access controls on the nac_server component can be abused in conjunction with CVE-2017-3749 and CVE-2017-3750 to elevate privileges to the root user (commonly known as 'rooting' or "jail breaking" a device).

Published 2017-06-29 15:29:00

Updated 2019-10-03 00:03:26

Source Lenovo Group Ltd.

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2017-3748

Probability of exploitation activity in the next 30 days: 0.04%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 10 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2017-3748

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C	3.9	10.0	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete
7.8	HIGH	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	1.8	5.9	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

References for CVE-2017-3748

http://www.securityfocus.com/bid/99295

Lenovo VIBE Mobile CVE-2017-3748 Local Privilege Escalation Vulnerability
Third Party Advisory;VDB Entry
https://support.lenovo.com/us/en/product_security/LEN-15823

Local Root Exploit on Lenovo VIBE Mobile Phones - US
Mitigation;Vendor Advisory

CVEs referencing this url

Products affected by CVE-2017-3748

Google » Android
Versions up to, including, (<=) 5.1.1
cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
Matching versions
When used together with: Lenovo » Vibe A1600 » Version: N/A
When used together with: Lenovo » Vibe A2560 » Version: N/A
When used together with: Lenovo » Vibe A2800 » Version: N/A
When used together with: Lenovo » Vibe A2860 » Version: N/A
When used together with: Lenovo » Vibe A2880 » Version: N/A
When used together with: Lenovo » Vibe A3000 » Version: N/A
When used together with: Lenovo » Vibe A3500 » Version: N/A
When used together with: Lenovo » Vibe A3600-d » Version: N/A
When used together with: Lenovo » Vibe A3600u » Version: N/A
When used together with: Lenovo » Vibe A3800-d » Version: N/A
When used together with: Lenovo » Vibe A3900 » Version: N/A
When used together with: Lenovo » Vibe A6000 » Version: N/A
When used together with: Lenovo » Vibe A6000-i » Version: N/A
When used together with: Lenovo » Vibe A6020i37 » Version: N/A
When used together with: Lenovo » Vibe A6600 » Version: N/A
When used together with: Lenovo » Vibe A6800 » Version: N/A
When used together with: Lenovo » Vibe K30-e » Version: N/A
When used together with: Lenovo » Vibe K30-w-cu » Version: N/A
When used together with: Lenovo » Vibe K32c30 » Version: N/A
When used together with: Lenovo » Vibe K80m » Version: N/A

Vulnerability Details : CVE-2017-3748

Exploit prediction scoring system (EPSS) score for CVE-2017-3748

CVSS scores for CVE-2017-3748

References for CVE-2017-3748

Products affected by CVE-2017-3748