CVE-2015-9165
CRITICALQualcomm Mdm9206 Firmware - Double Free
Title source: ruleDescription
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear IPQ4019, MDM9206, MDM9607, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 615/16/SD 415, SD 617, SD 650/52, SD 808, and SD 810, incorrect error handling could lead to a double free in QTEE file service API.
Scores
CVSS v3
9.8
EPSS
0.0021
EPSS Percentile
42.8%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Classification
CWE
CWE-415
Status
published
Affected Products (18)
qualcomm/mdm9206_firmware
qualcomm/mdm9607_firmware
qualcomm/ipq4019_firmware
qualcomm/msm8909w_firmware
qualcomm/sd_210_firmware
qualcomm/sd_212_firmware
qualcomm/sd_205_firmware
qualcomm/sd_400_firmware
qualcomm/sd_410_firmware
qualcomm/sd_412_firmware
qualcomm/sd_615_firmware
qualcomm/sd_616_firmware
qualcomm/sd_415_firmware
qualcomm/sd_617_firmware
qualcomm/sd_650_firmware
... and 3 more
Timeline
Published
Apr 18, 2018
Tracked Since
Feb 18, 2026