VYPR

Lenovo Vibe And Lenovo China Only Moto Mobile Phones

by Lenovo

CVEs (3)

  • CVE-2017-3748HigJun 29, 2017
    risk 0.51cvss 7.8epss 0.00

    On Lenovo VIBE mobile phones, improper access controls on the nac_server component can be abused in conjunction with CVE-2017-3749 and CVE-2017-3750 to elevate privileges to the root user (commonly known as 'rooting' or "jail breaking" a device).

  • CVE-2017-3750MedJun 29, 2017
    risk 0.42cvss 6.4epss 0.00

    On Lenovo VIBE mobile phones, the Lenovo Security Android application allows private data to be backed up and restored via Android Debug Bridge, which allows tampering leading to privilege escalation in conjunction with CVE-2017-3748 and CVE-2017-3749.

  • CVE-2017-3749MedJun 29, 2017
    risk 0.42cvss 6.4epss 0.00

    On Lenovo VIBE mobile phones, the Idea Friend Android application allows private data to be backed up and restored via Android Debug Bridge, which allows tampering leading to privilege escalation in conjunction with CVE-2017-3748 and CVE-2017-3750.