PT-2018-4470 · Qualcomm+1 · Qualcomm Snapdragon Mobile Sd 810+6

Publicado

2018-04-18

Atualizado

2018-05-09

CVE-2015-9134

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Android versions prior to 2018-04-05 security patch level

Description The issue occurs while processing QSEE Syscall 'qsee macc gen ecc privkey' in Android, resulting in an untrusted pointer dereference. This could lead to arbitrary write. The affected devices are those using Qualcomm Snapdragon Mobile SD 410/12, SD 615/16/SD 415, and SD 810.

Recommendations For Android versions prior to 2018-04-05 security patch level, update to a version with a security patch level of 2018-04-05 or later to resolve the issue.

Correção

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-476

Identificadores relacionados

CVE-2015-9134

Produtos afetados

Android

Qualcomm Snapdragon Mobile Sd 12

Qualcomm Snapdragon Mobile Sd 16

Qualcomm Snapdragon Mobile Sd 410

Qualcomm Snapdragon Mobile Sd 415

Qualcomm Snapdragon Mobile Sd 615

Qualcomm Snapdragon Mobile Sd 810

PT-2018-4470 · Qualcomm+1 · Qualcomm Snapdragon Mobile Sd 810+6

CVE-2015-9134

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3