PT-2017-2717 · Qualcomm+2 · Qualcomm Products+2

Published

2017-04-18

Updated

2017-08-23

CVE-2014-9968

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Android (affected versions not specified)

Description The issue is caused by a buffer overflow in the UIMDIAG interface of the Android operating system from the CAF repository. This can allow a remote attacker to impact the confidentiality, integrity, and availability of protected information. The vulnerability exists in all Qualcomm products with Android releases from CAF using the Linux kernel.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

BDU:2017-01953

CVE-2014-9968

Affected Products

Android

Linux Kernel

Qualcomm Products

PT-2017-2717 · Qualcomm+2 · Qualcomm Products+2

CVE-2014-9968

Weakness Enumeration

Related Identifiers

Affected Products

References · 4