In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9615, MDM9625, MDM9635M, and SD 810, improper input validation can cause a null pointer dereference in USB bootloader find_ep() function.
References
Link | Resource |
---|---|
https://source.android.com/security/bulletin/2018-04-01 | Vendor Advisory |
http://www.securityfocus.com/bid/103671 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Information
Published : 2018-04-18 07:29
Updated : 2018-05-01 13:42
NVD link : CVE-2015-9215
Mitre link : CVE-2015-9215
JSON object : View
CWE
CWE-476
NULL Pointer Dereference
Products Affected
qualcomm
- sd_810
- mdm9625_firmware
- mdm9625
- mdm9635m
- sd_810_firmware
- mdm9615_firmware
- mdm9615
- mdm9635m_firmware