CVE-2014-10039

Summary

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625, SD 400, and SD 800, calling qsee_app_entry_return() without first calling qsee_app_entry() will cause the stack to be restored to an older state resulting in a return to an unexpected location.

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.Snapdragon MobileMDM9625, SD 400, SD 800affected

Weaknesses

  • Lack of enforcement of proper sequence of calls in QTEE

ADP Enrichment

CVE Program Container

Additional References

References