PT-2018-4468 · Google+1 · Android+1
Published
2018-04-18
·
Updated
2018-05-09
·
CVE-2015-9132
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Android versions prior to 2018-04-05 security patch level
Description
The issue is related to a possible arbitrary memory read due to an untrusted pointer dereference when handling HLOS controlled values passed to the QSEE syscall helper. This affects Android on various Qualcomm Snapdragon Mobile and Small Cell SoC models.
Recommendations
For Android versions prior to 2018-04-05 security patch level, update to a version with a security patch level of 2018-04-05 or later to resolve the issue.
Fix
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Android
Qualcomm Snapdragon