Vulnerability Details CVE-2015-9115
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9625, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 820, and SD 820A, no address argument validation is performed on calls to the qsee_prng_getdata syscall.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.8%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
Products affected by CVE-2015-9115
-
cpe:2.3:h:qualcomm:mdm9625:-
-
cpe:2.3:h:qualcomm:sd_410:-
-
cpe:2.3:h:qualcomm:sd_412:-
-
cpe:2.3:h:qualcomm:sd_415:-
-
cpe:2.3:h:qualcomm:sd_425:-
-
cpe:2.3:h:qualcomm:sd_430:-
-
cpe:2.3:h:qualcomm:sd_450:-
-
cpe:2.3:h:qualcomm:sd_615:-
-
cpe:2.3:h:qualcomm:sd_616:-
-
cpe:2.3:h:qualcomm:sd_617:-
-
cpe:2.3:h:qualcomm:sd_625:-
-
cpe:2.3:h:qualcomm:sd_650:-
-
cpe:2.3:h:qualcomm:sd_652:-
-
cpe:2.3:h:qualcomm:sd_820:-
-
cpe:2.3:h:qualcomm:sd_820a:-
-
cpe:2.3:o:qualcomm:mdm9625_firmware:-
-
cpe:2.3:o:qualcomm:sd_410_firmware:-
-
cpe:2.3:o:qualcomm:sd_412_firmware:-
-
cpe:2.3:o:qualcomm:sd_415_firmware:-
-
cpe:2.3:o:qualcomm:sd_425_firmware:-
-
cpe:2.3:o:qualcomm:sd_430_firmware:-
-
cpe:2.3:o:qualcomm:sd_450_firmware:-
-
cpe:2.3:o:qualcomm:sd_615_firmware:-
-
cpe:2.3:o:qualcomm:sd_616_firmware:-
-
cpe:2.3:o:qualcomm:sd_617_firmware:-
-
cpe:2.3:o:qualcomm:sd_625_firmware:-
-
cpe:2.3:o:qualcomm:sd_650_firmware:-
-
cpe:2.3:o:qualcomm:sd_652_firmware:-
-
cpe:2.3:o:qualcomm:sd_820_firmware:-
-
cpe:2.3:o:qualcomm:sd_820a_firmware:-