CVE-2015-9146

Summary

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625, MDM9635M, MDM9645, MDM9650, MDM9655, SD 400, SD 800, SD 835, SD 845, SD 850, and SDX20, when QDI read, write, or ioctl are called, the passed-in pointer is not properly validated before accessing it for the delayed response.

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.Snapdragon MobileMDM9625, MDM9635M, MDM9645, MDM9650, MDM9655, SD 400, SD 800, SD 835, SD 845, SD 850, SDX20affected

Weaknesses

  • Untrusted pointer dereference in QDI read, write, or ioctl

ADP Enrichment

CVE Program Container

Additional References

References