High severity7.8NVD Advisory· Published Mar 8, 2017· Updated May 13, 2026

CVE-2017-0468

Description

A remote code execution vulnerability in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution within the context of the Mediaserver process. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-33351708.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A remote code execution vulnerability in Android's Mediaserver allows memory corruption via a specially crafted file, affecting versions 6.0 through 7.1.1.

Vulnerability

A remote code execution vulnerability exists in the Mediaserver component of Android. The bug is a memory corruption issue triggered during processing of a specially crafted media file. Affected versions include Android 6.0, 6.0.1, 7.0, and 7.1.1. The vulnerability is identified as Android ID A-33351708 [1].

Exploitation

An attacker can exploit this vulnerability by delivering a specially crafted media file to the target device. No additional privileges or user interaction beyond opening the file (e.g., via a messaging app or web browser) are required. The file causes memory corruption in the Mediaserver process, leading to arbitrary code execution.

Impact

Successful exploitation allows an attacker to execute arbitrary code within the context of the Mediaserver process. This can lead to complete compromise of the device's media processing capabilities, potentially enabling further escalation of privileges or data access. The impact is rated as Critical due to the remote code execution vector.

Mitigation

Google released a fix as part of the March 2017 Android Security Bulletin. Users should update their devices to the Android security patch level of 2017-03-05 or later. No workarounds are available; the only mitigation is applying the security update [1].

References

Android Security Bulletin—March 2017

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Google/Android6 versions
cpe:2.3:o:google:android:6.0:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:o:google:android:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:google:android:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:o:google:android:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:google:android:7.1.0:*:*:*:*:*:*:*
- cpe:2.3:o:google:android:7.1.1:*:*:*:*:*:*:*
- (no CPE)range: Android-6.0
Google/mediaserverllm-fuzzy
Range: 6.0, 6.0.1, 7.0, 7.1.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

source.android.com/security/bulletin/2017-03-01.htmlnvdVendor Advisory
www.securityfocus.com/bid/96717nvd
www.securitytracker.com/id/1037968nvd
source.android.com/security/bulletin/2017-03-01nvd

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000