← Back

CVE-2015-9184

nvd nist
Published: Apr 18, 2018Modified: Nov 21, 2024

JSON object

Loading...
9.8
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, SD 820A, and SD 835, lack of length checking in wv_dash_core_load_keys_v8() could lead to a buffer overflow vulnerability.

Affected (23)

Qualcomm
23 products
Msm8909w Firmware
Sd 210 Firmware
Sd 212 Firmware
Sd 205 Firmware
Sd 400 Firmware
Sd 410 Firmware
Sd 412 Firmware
Sd 425 Firmware
Sd 430 Firmware
Sd 450 Firmware
Sd 615 Firmware
Sd 616 Firmware
Sd 415 Firmware
Sd 617 Firmware
Sd 625 Firmware
Sd 650 Firmware
Sd 652 Firmware
Sd 800 Firmware
Sd 808 Firmware
Sd 810 Firmware
Sd 820 Firmware
Sd 835 Firmware
Sd 820a Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Msm8909w Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Msm8909w
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 210 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 210
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 212 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 212
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 205 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 205
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 400 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 400
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 410 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 410
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 412 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 412
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 425 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 425
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 430 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 430
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 450 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 450
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 615 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 615
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 616 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 616
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 415 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 415
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 617 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 617
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 625 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 625
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 650 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 650
All versions
Configuration Q
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 652 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 652
All versions
Configuration R
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 800 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 800
All versions
Configuration S
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 808 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 808
All versions
Configuration T
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 810 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 810
All versions
Configuration U
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 820 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 820
All versions
Configuration V
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 835 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 835
All versions
Configuration W
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 820a Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 820a
All versions

Related CWEs

CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (4)

Source: product-security@qualcomm.com
Third Party AdvisoryVDB Entry
Source: product-security@qualcomm.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.