CVE-2016-10495

CRITICAL

Android <2018-04-05 - Info Disclosure

Title source: llm

Description

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9635M, made changes to map the scan type value to an index value that is in range.

References (2)

[Vendor Advisory] https://source.android.com/security/bulletin/2018-04-01

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/103671

Scores

CVSS v3 9.8

EPSS 0.0021

EPSS Percentile 42.8%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-118

Status published

Products (1)

qualcomm/mdm9635m_firmware

Published Apr 18, 2018

Tracked Since Feb 18, 2026