Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2015-9157

Published: 18/04/2018 Updated: 10/05/2018
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Mdm9206 Firmware

Vulnerability Summary

In Android prior to 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear IPQ4019, MDM9206, MDM9607, MDM9625, MDM9635M, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 600, SD 615/16/SD 415, SD 617, SD 650/52, SD 800, SD 808, and SD 810, in widevine_dash_cmd_handler(), rsp buffers are passed off to widevine commands. These rsp buffers have values in them, such as buffer lengths, that need to be validated to ensure that no buffer overflow/over-reads happen. However, rsp buffers are not always in locked memory, meaning a time-of-check, time-of-use issue can occur where we check that the value is valid, but then a race condition occurs where this memory is swapped out with a different, possibly out of range, value.

Vulnerable Product Search on Vulmon Subscribe to Product

qualcomm mdm9206_firmware -

qualcomm mdm9607_firmware -

qualcomm ipq4019_firmware -

qualcomm mdm9625_firmware -

qualcomm mdm9635m_firmware -

qualcomm msm8909w_firmware -

qualcomm sd_210_firmware -

qualcomm sd_212_firmware -

qualcomm sd_205_firmware -

qualcomm sd_400_firmware -

qualcomm sd_410_firmware -

qualcomm sd_412_firmware -

qualcomm sd_600_firmware -

qualcomm sd_615_firmware -

qualcomm sd_616_firmware -

qualcomm sd_415_firmware -

qualcomm sd_617_firmware -

qualcomm sd_650_firmware -

qualcomm sd_652_firmware -

qualcomm sd_800_firmware -

qualcomm sd_808_firmware -

qualcomm sd_810_firmware -

References

CWE-119CWE-362https://source.android.com/security/bulletin/2018-04-01http://www.securityfocus.com/bid/103671https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereferenceCVE-2023-52689CVE-2024-23803client sideCVE-2023-52696information disclosureCVE-2024-35843CVE-2024-27130CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook