PT-2018-1208 · Google · Android

Published

2018-04-02

Updated

2018-05-02

CVE-2016-10482

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Android versions prior to 2018-04-05

Description The issue is related to insufficient input validation in the Qualcomm component of the Android operating system. This can allow a remote attacker to impact the confidentiality, integrity, and availability of protected information. The problem occurs while processing downlink information, which can lead to an assert being reached.

Recommendations For Android versions prior to 2018-04-05, update the Android security patch level to a version released on or after 2018-04-05 to resolve the issue.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

BDU:2018-00676

CVE-2016-10482

Affected Products

Android

PT-2018-1208 · Google · Android

CVE-2016-10482

Weakness Enumeration

Related Identifiers

Affected Products

References · 4