Hao Chen

**Nome do software vulnerável e versões afetadas** Software da plataforma incorporada da Qualcomm (versões afetadas não especificadas) **Descrição** O problema está relacionado a um possível estouro de buffer devido à falta de verificação do comprimento do parâmetro durante a análise do IE de varredura de MBSSID. Isso pode ser explorado por um invasor remoto para comprometer a confidencialidade, a integridade e a disponibilidade das informações protegidas. O número estimado de dispositivos potencialmente afetados em todo o mundo não foi especificado. Não há informações sobre incidentes reais em que essa vulnerabilidade tenha sido explorada. **Recomendações** No momento, não há informações sobre uma versão mais recente que contenha uma correção para essa vulnerabilidade.

**Name of the Vulnerable Software and Affected Versions** Android Kernel **Description** The issue is related to an information disclosure vulnerability in the Qualcomm audio driver. It affects Android products. **Recommendations** For Android Kernel, apply the fix referenced by Android ID: A-35764875 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Android kernel **Description** The issue is related to an elevation of privilege vulnerability in the Qualcomm WiFi driver. It affects the Android product. **Recommendations** For Android kernel, update to a version that includes the fix for the issue, as referenced by Android ID: A-32086742.

Name of the Vulnerable Software and Affected Versions: Prague smart phones versions earlier than Prague-AL00AC00B211 Prague smart phones versions earlier than Prague-AL00BC00B211 Prague smart phones versions earlier than Prague-AL00CC00B211 Prague smart phones versions earlier than Prague-TL00AC01B211 Prague smart phones versions earlier than Prague-TL10AC01B211 Description: The Bdat driver has an integer overflow issue due to a lack of parameter validation. This can be exploited by an attacker who tricks a user into installing a malicious APP, which can then send a specific parameter to the driver, potentially leading to arbitrary code execution. Recommendations: For versions earlier than Prague-AL00AC00B211, update to Prague-AL00AC00B211 or later. For versions earlier than Prague-AL00BC00B211, update to Prague-AL00BC00B211 or later. For versions earlier than Prague-AL00CC00B211, update to Prague-AL00CC00B211 or later. For versions earlier than Prague-TL00AC01B211, update to Prague-TL00AC01B211 or later. For versions earlier than Prague-TL10AC01B211, update to Prague-TL10AC01B211 or later.

**Name of the Vulnerable Software and Affected Versions** Huawei H60 (Honor 6) versions earlier than H60-L02 6.12.16 Huawei P9 Plus versions earlier than VIE-AL10BC00B356 **Description** The issue is related to a stack overflow in the touchscreen drive. An attacker can exploit this by tricking a user into installing a malicious application on the smartphone and sending a specific parameter to the touchscreen drive, which can cause the system to crash or escalate privileges. **Recommendations** For Huawei H60 (Honor 6) versions earlier than H60-L02 6.12.16, update to version H60-L02 6.12.16 or later. For Huawei P9 Plus versions earlier than VIE-AL10BC00B356, update to version VIE-AL10BC00B356 or later.

**Name of the Vulnerable Software and Affected Versions** Huawei smart phones versions prior to VIE-L09C40B360 **Description** The issue is caused by a buffer overflow due to the lack of parameter validation. An attacker can trick a user into installing a malicious APP with root privilege, which can send a specific parameter to the smart phone, potentially causing the smartphone to restart or allowing arbitrary code execution. **Recommendations** For versions prior to VIE-L09C40B360, update to version VIE-L09C40B360 or later to resolve the issue. As a temporary workaround, consider restricting the installation of APPs to minimize the risk of exploitation. Avoid using parameters that may trigger the buffer overflow until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Huawei smart phones with software earlier than Nice-AL00C00B160 versions Huawei smart phones with software earlier than Nice-AL10C00B140 versions **Description** The issue allows an attacker to trick a user into installing a malicious application on the smart phone. By sending a given parameter, the attacker can cause any memory access issues, leading to sensitive information leakage. **Recommendations** For versions earlier than Nice-AL00C00B160, update to Nice-AL00C00B160 or later to resolve the issue. For versions earlier than Nice-AL10C00B140, update to Nice-AL10C00B140 or later to resolve the issue. As a temporary workaround, consider restricting the installation of applications from untrusted sources to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Huawei smart phones with software earlier than Nice-AL00C00B160 versions Huawei smart phones with software earlier than Nice-AL10C00B140 versions **Description** The issue allows an attacker to trick a user into installing a malicious application on the smart phone. By sending a given parameter, the attacker can cause any memory access vulnerabilities, leading to sensitive information leakage. **Recommendations** For versions earlier than Nice-AL00C00B160, update to Nice-AL00C00B160 or later to resolve the issue. For versions earlier than Nice-AL10C00B140, update to Nice-AL10C00B140 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Huawei smart phones with software earlier than Nice-AL00C00B160 versions Huawei smart phones with software earlier than Nice-AL10C00B140 versions **Description** The issue is related to an out-of-bound read. An attacker can trick a user into installing a malicious application on the smart phone and send a given parameter to cause memory out-of-bound read. **Recommendations** For versions earlier than Nice-AL00C00B160, update to Nice-AL00C00B160 or later to resolve the issue. For versions earlier than Nice-AL10C00B140, update to Nice-AL10C00B140 or later to resolve the issue. As a temporary workaround, consider restricting the installation of applications from untrusted sources to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Huawei smart phones with software versions earlier than Nice-AL00C00B155 **Description** The issue is related to a camera driver on the MTK platform, which has an arbitrary memory write vulnerability due to insufficient input verification. This can be exploited by an attacker who tricks a user into installing a malicious application with special privileges, allowing the attacker to send a specific parameter to the driver and cause privilege escalation. **Recommendations** For versions earlier than Nice-AL00C00B155, update to a version Nice-AL00C00B155 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Huawei smart phones with software versions earlier than Nice-AL00C00B155 **Description** The issue is related to a buffer overflow vulnerability in the camera driver of the MTK platform. It occurs due to insufficient input verification, allowing an attacker to trick a user into installing a malicious application with special privileges. This application can send a specific parameter to the smartphone's driver, resulting in privilege escalation. **Recommendations** For versions earlier than Nice-AL00C00B155, update to a version that includes the fix for this issue to prevent privilege escalation.

**Name of the Vulnerable Software and Affected Versions** Huawei smart phones versions earlier than VIE-L09C40B360 **Description** The issue is caused by a buffer overflow due to the lack of parameter validation. An attacker can trick a user into installing a malicious APP with root privilege, which can send a specific parameter to the smart phone, potentially causing the smartphone to restart or allowing for arbitrary code execution. **Recommendations** For versions earlier than VIE-L09C40B360, update to version VIE-L09C40B360 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Android kernel **Description** A elevation of privilege issue exists in the Broadcom wi-fi driver, affecting Android. **Recommendations** For Android kernel, apply the fix referenced by Android ID A-37357704 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Android kernel **Description** A elevation of privilege vulnerability exists in the Broadcom wi-fi driver. This issue affects Android products. **Recommendations** For Android kernel, apply the fix referenced by Android ID: A-37306719 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Android kernel **Description** A elevation of privilege vulnerability exists in the Broadcom wi-fi driver. This issue affects the Android kernel. **Recommendations** For Android kernel, apply the fix referenced by Android ID: A-37351060 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Android kernel **Description** The issue is related to an elevation of privilege vulnerability in the Broadcom wi-fi driver. **Recommendations** For Android kernel, apply the patch referenced by Android ID A-37722970 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Android kernel **Description** A elevation of privilege vulnerability exists in the Broadcom wi-fi driver. This issue affects Android products. **Recommendations** For Android kernel, apply the fix referenced by Android ID A-37722328 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Android kernel **Description** The issue is related to an elevation of privilege vulnerability in the Broadcom wi-fi driver. **Recommendations** For Android kernel, apply the fix referenced by Android ID: A-37685267 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Android versions Kernel-3.18 **Description** An elevation of privilege issue in the Synaptics Touchscreen driver could allow a local malicious application to execute arbitrary code within the context of the kernel. This issue requires compromising a privileged process and is related to insufficient access control to certain functions. **Recommendations** For Android version Kernel-3.18, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Android versions Kernel-3.10 through Kernel-3.18 **Description** The issue is related to insufficient access control in the Broadcom Wi-Fi driver of the Android operating system. It allows a remote attacker to execute arbitrary code within the context of the kernel using a special application. This is an elevation of privilege issue that could enable a local malicious application to execute arbitrary code within the context of the kernel, but it first requires compromising a privileged process. **Recommendations** For Android versions Kernel-3.10 through Kernel-3.18, update to a version that includes the fix for this issue to prevent exploitation.