CVE-2016-10239

Name of the Vulnerable Software and Affected Versions Qualcomm Secure Execution Environment (affected versions not specified) Android (all releases from CAF using the Linux kernel)

Description The issue is caused by an integer overflow, leading to a buffer overflow in memory. This could allow a remote attacker to bypass existing access control policies. The vulnerability may be exploited due to improper input validation.

Recommendations For Qualcomm Secure Execution Environment, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Android, consider applying configuration changes to restrict access to sensitive areas of the system until a patch is available. Restrict input to prevent improper validation that could lead to integer overflow and subsequent buffer overflow.