CVE-2016-10442

Summary

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9640, SDM630, MSM8976, MSM8937, SDM845, MSM8976, and MSM8952, when running module or kernel code with improper access control allowing writing to arbitrary regions of memory, the user may utilize this vector to alter module executable code.

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.Snapdragon MobileMDM9640, SDM630, MSM8976, MSM8937, SDM845, MSM8976, MSM8952affected

Weaknesses

  • Code injection vulnerability when using kernel modules

ADP Enrichment

CVE Program Container

Additional References

References