Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2016-10481

Published: 18/04/2018 Updated: 02/05/2018
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Mdm9607 Firmware

Vulnerability Summary

In Android prior to 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, QCA4531, QCA6174A, QCA6574AU, QCA6584, QCA6584AU, QCA9377, QCA9378, QCA9379, SD 210/SD 212/SD 205, SD 425, SD 600, SD 625, SD 650/52, SD 808, SD 810, SD 820, SD 835, SD 845, SD 850, and SDX20, if WLAN FW receives the WMI_STA_SMPS_PARAM_CMDID ioctl in not-associated state, when the virtual channel handle is not assigned, the code doesn't check for NULL virtual channel handle, so an assert occurs.

Vulnerable Product Search on Vulmon Subscribe to Product

qualcomm mdm9607_firmware -

qualcomm mdm9635m_firmware -

qualcomm mdm9640_firmware -

qualcomm mdm9650_firmware -

qualcomm sd_210_firmware -

qualcomm sd_212_firmware -

qualcomm sd_205_firmware -

qualcomm sd_425_firmware -

qualcomm sd_600_firmware -

qualcomm sd_625_firmware -

qualcomm sd_650_firmware -

qualcomm sd_652_firmware -

qualcomm sd_808_firmware -

qualcomm sd_810_firmware -

qualcomm sd_820_firmware -

qualcomm sd_835_firmware -

qualcomm sd_845_firmware -

qualcomm sdx20_firmware -

qualcomm qca4531_firmware -

qualcomm qca6174a_firmware -

qualcomm qca6574au_firmware -

qualcomm qca6584_firmware -

qualcomm qca6584au_firmware -

qualcomm qca9377_firmware -

qualcomm qca9378_firmware -

qualcomm qca9379_firmware -

References

CWE-17https://source.android.com/security/bulletin/2018-04-01http://www.securityfocus.com/bid/103671https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook