Vulnerability: Privilege Escalation on Lenovo VIBE Mobile Phones

Vulnerability: Privilege Escalation on Lenovo VIBE Mobile Phones

CVE-2017-3748 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

On Lenovo VIBE mobile phones, improper access controls on the nac_server component can be abused in conjunction with CVE-2017-3749 and CVE-2017-3750 to elevate privileges to the root user (commonly known as 'rooting' or "jail breaking" a device).

Learn more about our Cis Benchmark Audit For Server Software.