PT-2018-4529 · Qualcomm+1 · Fsm9055+5

Publicado

2018-04-18

·

Atualizado

2018-05-09

·

CVE-2015-9196

CVSS v2.0

10

Alta

VetorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Android versions prior to 2018-04-05 security patch level
Description The issue is caused by improper input validation in tzbsp ocmem, which can lead to privilege escalation. This affects Qualcomm Snapdragon Mobile and Small Cell SoC FSM9055, MDM9635M, SD 400, and SD 800.
Recommendations For Android versions prior to 2018-04-05 security patch level, update to a version with a security patch level of 2018-04-05 or later to resolve the issue.

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264CWE-20

Identificadores relacionados

CVE-2015-9196

Produtos afetados

Android
Fsm9055
Mdm9635M
Sd 400
Sd 800
Snapdragon Mobile