PT-2017-8794 · Qualcomm · Qualcomm

Published

2017-08-16

Updated

2017-08-18

CVE-2016-5858

CVSS v2.0

2.6

Low

Vector

AV:N/AC:H/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android (affected versions not specified)

Description The issue arises in an ioctl handler when a user provides a value that is too large, resulting in an out-of-bounds read.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2016-5858

Affected Products

Qualcomm

PT-2017-8794 · Qualcomm · Qualcomm

CVE-2016-5858

Weakness Enumeration

Related Identifiers

Affected Products

References · 5