← back
CVE-2017-3748

CVE-2017-3748

EPSS 0.2%
On Lenovo VIBE mobile phones, improper access controls on the nac_server component can be abused in conjunction with CVE-2017-3749 and CVE-2017-3750 to elevate privileges to the root user (commonly known as 'rooting' or "jail breaking" a device).
Affected products
Lenovo Group Ltd. · Lenovo Vibe and Lenovo China-only Moto Mobile Phones

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://support.lenovo.com/us/en/product_security/LEN-15823http://www.securityfocus.com/bid/99295