CVE-2016-10442

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9640, SDM630, MSM8976, MSM8937, SDM845, MSM8976, and MSM8952, when running module or kernel code with improper access control allowing writing to arbitrary regions of memory, the user may utilize this vector to alter module executable code.
References
Link Resource
http://www.securityfocus.com/bid/103671 Third Party Advisory VDB Entry
https://source.android.com/security/bulletin/2018-04-01 Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:qualcomm:msm8976_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:msm8976:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:qualcomm:msm8976_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:msm8976:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:qualcomm:msm8952_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:msm8952:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-04-18 14:29

Updated : 2024-02-28 16:25


NVD link : CVE-2016-10442

Mitre link : CVE-2016-10442

CVE.ORG link : CVE-2016-10442


JSON object : View

Products Affected

qualcomm

  • sdm845_firmware
  • sdm845
  • msm8937_firmware
  • msm8937
  • msm8976
  • msm8952
  • sdm630
  • msm8952_firmware
  • mdm9650_firmware
  • mdm9640_firmware
  • sdm630_firmware
  • mdm9650
  • mdm9640
  • msm8976_firmware
CWE
CWE-284

Improper Access Control