Vulnerability Details CVE-2015-9134
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 410/12, SD 615/16/SD 415, and SD 810, while processing QSEE Syscall 'qsee_macc_gen_ecc_privkey', untrusted pointer dereference occurs, which could result in arbitrary write.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 39.6%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2015-9134
-
cpe:2.3:h:qualcomm:sd_410:-
-
cpe:2.3:h:qualcomm:sd_412:-
-
cpe:2.3:h:qualcomm:sd_415:-
-
cpe:2.3:h:qualcomm:sd_615:-
-
cpe:2.3:h:qualcomm:sd_616:-
-
cpe:2.3:h:qualcomm:sd_810:-
-
cpe:2.3:o:qualcomm:sd_410_firmware:-
-
cpe:2.3:o:qualcomm:sd_412_firmware:-
-
cpe:2.3:o:qualcomm:sd_415_firmware:-
-
cpe:2.3:o:qualcomm:sd_615_firmware:-
-
cpe:2.3:o:qualcomm:sd_616_firmware:-
-
cpe:2.3:o:qualcomm:sd_810_firmware:-