CVE-2015-9112 Vulnerability Details

  /     /     /  

CVE-2015-9112 Metadata Quick Info

CVE Published: 18/04/2018 | CVE Updated: 17/09/2024 | CVE Year: 2015
Source: qualcomm | Vendor: Qualcomm, Inc. | Product: Snapdragon Automobile, Snapdragon Mobile
Status : PUBLISHED

---

CVE-2015-9112 Description

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9625, SD 400, SD 800, SD 820, and SD 820A, lack of input validation in QSEE can cause potential buffer overflow.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name: Untrusted Pointer Dereference in Core
Source: Qualcomm, Inc.

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).