CVE-2016-10492

Name of the Vulnerable Software and Affected Versions Android versions prior to 2018-04-05

Description The issue is related to improper ciphersuite validation, which leads to SecSSL accepting an unadvertised ciphersuite. This affects Android on various Qualcomm Snapdragon Mobile and Snapdragon Wear devices, including MDM9206, MDM9607, MDM9615, MDM9635M, MDM9640, MDM9645, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, SD 835, SD 845, SD 850, and SDX20.

Recommendations For Android versions prior to 2018-04-05, update the Android system to a version with a security patch level of 2018-04-05 or later to resolve the issue.