Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
8.1
CVSSv3

CVE-2016-10417

Published: 18/04/2018 Updated: 01/05/2018
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
CVSS v3 Base Score: 8.1 | Impact Score: 5.9 | Exploitability Score: 2.2
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Mdm9206 Firmware

Vulnerability Summary

In Android prior to 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear IPQ4019, MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, SD 820A, and SDX20, in QTEE, a TOCTOU vulnerability exists due to improper access control.

Vulnerable Product Search on Vulmon Subscribe to Product

qualcomm mdm9206_firmware -

qualcomm mdm9607_firmware -

qualcomm ipq4019_firmware -

qualcomm mdm9625_firmware -

qualcomm mdm9635m_firmware -

qualcomm mdm9640_firmware -

qualcomm mdm9645_firmware -

qualcomm mdm9650_firmware -

qualcomm mdm9655_firmware -

qualcomm msm8909w_firmware -

qualcomm sd_210_firmware -

qualcomm sd_212_firmware -

qualcomm sd_205_firmware -

qualcomm sd_400_firmware -

qualcomm sd_410_firmware -

qualcomm sd_412_firmware -

qualcomm sd_425_firmware -

qualcomm sd_430_firmware -

qualcomm sd_450_firmware -

qualcomm sd_615_firmware -

qualcomm sd_616_firmware -

qualcomm sd_415_firmware -

qualcomm sd_617_firmware -

qualcomm sd_625_firmware -

qualcomm sd_650_firmware -

qualcomm sd_652_firmware -

qualcomm sd_800_firmware -

qualcomm sd_808_firmware -

qualcomm sd_810_firmware -

qualcomm sd_820_firmware -

qualcomm sd_820a_firmware -

qualcomm sdx20_firmware -

References

CWE-362CWE-284https://source.android.com/security/bulletin/2018-04-01http://www.securityfocus.com/bid/103671https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereferenceCVE-2023-52689CVE-2024-23803client sideCVE-2023-52696information disclosureCVE-2024-35843CVE-2024-27130CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook