How severe is CVE-2017-8173?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.6 out of 10.

What type of vulnerability is CVE-2017-8173?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2017-8173

MEDIUM Year: 2017

CVSS v3 Score

4.6

Medium

CVSS v2 Score

2.1

Low

Weakness Type

NVD-CWE-Other

View all →

Vulnerability Description

Maya-L02,VKY-L09,VTR-L29,Vicky-AL00A,Victoria-AL00A,Warsaw-AL00 smart phones with software of earlier than Maya-L02C636B126 versions,earlier than VKY-L29C10B151 versions,earlier than VTR-L29C10B151 versions,earlier than Vicky-AL00AC00B162 versions,earlier than Victoria-AL00AC00B167 versions,earlier than Warsaw-AL00C00B200 versions have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can login the configuration flow by some secret code and can perform some operations to update the Google account. As a result, the FRP function is bypassed.

CVE-2015-7566

MEDIUM

CVSS:4.6(Medium)

The clie_5_attach function in drivers/usb/serial/visor.c in the Linux kernel through 4.4.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash...

NVD-CWE-Other2015

CVE-2015-8324

MEDIUM

CVSS:4.6(Medium)

The ext4 implementation in the Linux kernel before 2.6.34 does not properly track the initialization of certain data structures, which allows physically proximate attackers to cause a denial of servic...

NVD-CWE-Other2015

CVE-2016-1851

MEDIUM

CVSS:4.6(Medium)

The Screen Lock feature in Apple OS X before 10.11.5 mishandles password profiles, which allows physically proximate attackers to reset expired passwords in the lock-screen state via unspecified vecto...

NVD-CWE-Other2016

CVE-2016-2184

MEDIUM

CVSS:4.6(Medium)

The create_fixed_stream_quirk function in sound/usb/quirks.c in the snd-usb-audio driver in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL point...

NVD-CWE-Other2016

CVE-2016-2185

MEDIUM

CVSS:4.6(Medium)

The ati_remote2_probe function in drivers/input/misc/ati_remote2.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and sys...

NVD-CWE-Other2016

CVE-2016-2186

MEDIUM

CVSS:4.6(Medium)

The powermate_probe function in drivers/input/misc/powermate.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system ...

NVD-CWE-Other2016

CVE-2017-8173

Vulnerability Description

Related Vulnerabilities

CVE-2015-7566

CVE-2015-8324

CVE-2016-1851

CVE-2016-2184

CVE-2016-2185

CVE-2016-2186