VIR Vulnerability Intelligence Relay

CVE-2017-14914

critical
Published 2017-12-05 · Modified 2026-05-13
CVSS v3
9.8
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS v2
10.0
VIR risk
9.8

Description

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, handles in the global client structure can become stale.

Predictions

Exploit likelihood
97%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: product-security@qualcomm.com — https://source.android.com/security/bulletin/2017-12-01

References

CWEs

CWE-20

Verify integrity in audit chain (admin only). AS-IS.