VYPR
← All advisories
Medium severity5.5NVD Advisory· Published Mar 8, 2017· Updated May 13, 2026

CVE-2017-0482

CVE-2017-0482

Description

A denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High severity due to the possibility of remote denial of service. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-33090864.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A denial of service vulnerability in Android's Mediaserver allows a crafted file to cause device hang or reboot.

Vulnerability

A denial of service vulnerability exists in Android's Mediaserver component that can be triggered by a specially crafted file. The affected versions are Android 6.0, 6.0.1, 7.0, and 7.1.1 [1]. The vulnerability is tracked as Android ID A-33090864 [1].

Exploitation

An attacker can exploit this vulnerability by providing a crafted file that is processed by Mediaserver. The attacker does not require any special authentication or elevated privileges, as the file can be delivered through various means such as a malicious app or a web page [1]. The user may need to open or preview the file for the processing to occur.

Impact

Successful exploitation causes the Mediaserver to enter a state that leads to a device hang or reboot, resulting in a temporary denial of service. The impact is limited to availability, with no evidence of information disclosure or privilege escalation [1].

Mitigation

Google released patches for this vulnerability with the March 2017 Android Security Bulletin for all affected versions [1]. Users should apply the security update as soon as it is available from their device manufacturer or carrier. No workarounds are currently available aside from installing the update.

References
  1. Android Security Bulletin—March 2017

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

7
  • Google/Android6 versions
    cpe:2.3:o:google:android:6.0:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:o:google:android:6.0:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:6.0.1:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:7.0:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:7.1.0:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:7.1.1:*:*:*:*:*:*:*
    • (no CPE)range: Android-6.0
  • Google/mediaserverllm-fuzzy
    Range: 6.0 - 7.1.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

4

News mentions

0

No linked articles in our index yet.