CVE-2016-10296

Name of the Vulnerable Software and Affected Versions Android versions Kernel-3.10, Kernel-3.18

Description An information disclosure issue in the Qualcomm shared memory driver could allow a local malicious application to access data outside of its permission levels. This issue is considered moderate as it requires compromising a privileged process first.

Recommendations For Android versions Kernel-3.10 and Kernel-3.18, consider restricting access to sensitive data until a patch is available. As a temporary workaround, limiting the privileges of applications that use the Qualcomm shared memory driver may help minimize the risk of exploitation.