CVE-2014-7921

Published: Apr 13, 2017Modified: May 13, 2026

9.8

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

mediaserver in Android 4.0.3 through 5.x before 5.1 allows attackers to gain privileges. NOTE: This is a different vulnerability than CVE-2014-7920.

Affected (17)

Products: Google: Android

1 product

Configuration A

17 vulnerable

Vulnerable Software	Affected Versions
Google Android	Version 4.0.3
Google Android	Version 4.0.4
Google Android	Version 4.1.2
Google Android	Version 4.1
Google Android	Version 4.2.1
Google Android	Version 4.2.2
Google Android	Version 4.2
Google Android	Version 4.3.1
Google Android	Version 4.3
Google Android	Version 4.4.1
Google Android	Version 4.4.2
Google Android	Version 4.4.3
Google Android	Version 4.4.4
Google Android	Version 4.4
Google Android	Version 5.0.1
Google Android	Version 5.0.2
Google Android	Version 5.0

Related CWEs

References (4)

https://android.googlesource.com/platform/frameworks/av/+/36d1577%5E%21/

Source: chrome-cve-admin@google.com

https://bits-please.blogspot.com/2016/01/android-privilege-escalation-to.html

Source: chrome-cve-admin@google.com

https://android.googlesource.com/platform/frameworks/av/+/36d1577%5E%21/

Source: af854a3a-2127-422b-91ae-364da2661108

https://bits-please.blogspot.com/2016/01/android-privilege-escalation-to.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.