PT-2016-5706 · Google · Android
Published
2016-09-11
·
Updated
2017-08-13
·
CVE-2016-3874
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Android versions prior to 2016-09-05
Description
The issue is related to the Qualcomm Wi-Fi driver in Android, where the
wlan hdd wext.c file does not properly validate the arguments array. This allows attackers to gain privileges via a crafted application that sends a WE UNIT TEST CMD command.Recommendations
For Android versions prior to 2016-09-05, update to a version released on or after 2016-09-05 to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Android