admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-09-17 18:45:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2017/CVE-2017-37xx/CVE-2017-3749.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

222 lines
7.5 KiB
JSON
Raw Blame History

{
"id": "CVE-2017-3749",
"sourceIdentifier": "psirt@lenovo.com",
"published": "2017-06-29T15:29:00.237",
"lastModified": "2024-11-21T03:26:03.807",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "On Lenovo VIBE mobile phones, the Idea Friend Android application allows private data to be backed up and restored via Android Debug Bridge, which allows tampering leading to privilege escalation in conjunction with CVE-2017-3748 and CVE-2017-3750."
},
{
"lang": "es",
"value": "En los tel\u00e9fonos m\u00f3viles Lenovo VIBE, la aplicaci\u00f3n de Android Idea Friend permite que los datos privados se copien y restauren mediante Android Debug Bridge, lo que permite la falsificaci\u00f3n que conduce a un escalado de privilegios junto con CVE-2017-3748 y CVE-2017-3750."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"attackVector": "PHYSICAL",
"attackComplexity": "HIGH",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 0.5,
"impactScore": 5.9
}
],
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"baseScore": 6.9,
"accessVector": "LOCAL",
"accessComplexity": "MEDIUM",
"authentication": "NONE",
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"availabilityImpact": "COMPLETE"
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 3.4,
"impactScore": 10.0,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:*:*:*:*:*:*:*:*",
"versionEndIncluding": "5.1.1",
"matchCriteriaId": "B349128A-CD08-4B2B-975B-650831183DBE"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_a1600:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FF657581-9D69-4310-AE50-BE48CA5D4CB9"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_a2560:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0CFB6B14-B5BB-48AB-92CB-CF7487512DC5"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_a2800:-:*:*:*:*:*:*:*",
"matchCriteriaId": "325AC02E-E178-40D9-90D0-4E79843290B9"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_a2860:-:*:*:*:*:*:*:*",
"matchCriteriaId": "339FC9D6-19B2-4B91-B899-00E5E277B303"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_a2880:-:*:*:*:*:*:*:*",
"matchCriteriaId": "06D59E67-2F49-4B3F-9437-94C7140BCF31"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_a3000:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CBBAF531-27D5-44D6-9EEC-BA86172290E8"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_a3500:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0D7D1D8F-70CB-4B2F-BC7D-1B10E7EB2077"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_a3600-d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6F2F72DE-F368-4A03-BFA4-56B9FA4938AF"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_a3600u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6401481C-49A1-4886-80B8-E14569D77DA4"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_a3800-d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "31FDA3C7-BC99-45A5-AE81-46DA8FA579C7"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_a3900:-:*:*:*:*:*:*:*",
"matchCriteriaId": "65E0F862-F45A-46CA-941A-99ED0FFF4272"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_a6000:-:*:*:*:*:*:*:*",
"matchCriteriaId": "32979F5A-1DD6-42A9-9E10-E34CFFC96626"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_a6000-i:-:*:*:*:*:*:*:*",
"matchCriteriaId": "898242F7-7C48-4439-8520-A0680EFD9FCD"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_a6020i37:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EC57159C-1E88-43AB-A56E-66CA3AD171EE"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_a6600:-:*:*:*:*:*:*:*",
"matchCriteriaId": "83D6A8C1-E7E2-449F-8F6C-02993935E3CB"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_a6800:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ADEF9C5D-A634-4E0D-AD7A-7F84BD7EF0CC"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_k30-e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "72AFFC5D-B159-4A7A-A482-455260883DC2"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_k30-w-cu:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B75A5EB3-6E3D-42D5-98E5-E0523342C11A"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_k32c30:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6E8E4082-C625-4CC2-BD8E-3D8DD26FC5F3"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:lenovo:vibe_k80m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AECF65FF-B344-446E-B303-BDB58FFC7290"
}
]
}
]
}
],
"references": [
{
"url": "https://support.lenovo.com/us/en/product_security/LEN-15823",
"source": "psirt@lenovo.com",
"tags": [
"Mitigation",
"Vendor Advisory"
]
},
{
"url": "https://support.lenovo.com/us/en/product_security/LEN-15823",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mitigation",
"Vendor Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink