CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-10489

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 400, lack of address argument validation in qsee_get_tz_app_name() may lead to an untrusted pointer dereference.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.9%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 10.0

References

http://www.securityfocus.com/bid/103671
https://source.android.com/security/bulletin/2018-04-01
http://www.securityfocus.com/bid/103671
https://source.android.com/security/bulletin/2018-04-01

Products affected by CVE-2016-10489

Qualcomm » Sd 400 » Version: N/A

cpe:2.3:h:qualcomm:sd_400:-
Qualcomm » Sd 400 Firmware » Version: N/A

cpe:2.3:o:qualcomm:sd_400_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-10489

Products

Pricing

Contact Us