Lucene search

[email protected]NVD:CVE-2016-10461

HistoryApr 18, 2018 - 2:29 p.m.

CVE-2016-10461

2018-04-1814:29:12

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.7

Confidence

High

EPSS

0.002

Percentile

56.1%

JSON

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9650, SD 650/52, SD 808, SD 810, SD 820, and SDX20, lack of proper bounds checking may lead to a buffer overread.

Affected configurations

Nvd

Node

qualcommmdm9650_firmwareMatch-

AND

qualcommmdm9650Match-

Node

qualcommsd_650_firmwareMatch-

AND

qualcommsd_650Match-

Node

qualcommsd_652_firmwareMatch-

AND

qualcommsd_652Match-

Node

qualcommsd_808_firmwareMatch-

AND

qualcommsd_808Match-

Node

qualcommsd_810_firmwareMatch-

AND

qualcommsd_810Match-

Node

qualcommsd_820_firmwareMatch-

AND

qualcommsd_820Match-

Node

qualcommsdx20_firmwareMatch-

AND

qualcommsdx20Match-

VendorProductVersionCPE
qualcommmdm9650_firmware-cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*
qualcommmdm9650-cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*
qualcommsd_650_firmware-cpe:2.3:o:qualcomm:sd_650_firmware:-:*:*:*:*:*:*:*
qualcommsd_650-cpe:2.3:h:qualcomm:sd_650:-:*:*:*:*:*:*:*
qualcommsd_652_firmware-cpe:2.3:o:qualcomm:sd_652_firmware:-:*:*:*:*:*:*:*
qualcommsd_652-cpe:2.3:h:qualcomm:sd_652:-:*:*:*:*:*:*:*
qualcommsd_808_firmware-cpe:2.3:o:qualcomm:sd_808_firmware:-:*:*:*:*:*:*:*
qualcommsd_808-cpe:2.3:h:qualcomm:sd_808:-:*:*:*:*:*:*:*
qualcommsd_810_firmware-cpe:2.3:o:qualcomm:sd_810_firmware:-:*:*:*:*:*:*:*
qualcommsd_810-cpe:2.3:h:qualcomm:sd_810:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
qualcomm	mdm9650_firmware	-	cpe:2.3:o:qualcomm:mdm9650_firmware:-:::::::*
qualcomm	mdm9650	-	cpe:2.3:h:qualcomm:mdm9650:-:::::::*
qualcomm	sd_650_firmware	-	cpe:2.3:o:qualcomm:sd_650_firmware:-:::::::*
qualcomm	sd_650	-	cpe:2.3:h:qualcomm:sd_650:-:::::::*
qualcomm	sd_652_firmware	-	cpe:2.3:o:qualcomm:sd_652_firmware:-:::::::*
qualcomm	sd_652	-	cpe:2.3:h:qualcomm:sd_652:-:::::::*
qualcomm	sd_808_firmware	-	cpe:2.3:o:qualcomm:sd_808_firmware:-:::::::*
qualcomm	sd_808	-	cpe:2.3:h:qualcomm:sd_808:-:::::::*
qualcomm	sd_810_firmware	-	cpe:2.3:o:qualcomm:sd_810_firmware:-:::::::*
qualcomm	sd_810	-	cpe:2.3:h:qualcomm:sd_810:-:::::::*

Rows per page:

1-10 of 141

References

www.securityfocus.com/bid/103671

source.android.com/security/bulletin/2018-04-01

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.7

Confidence

High

EPSS

0.002

Percentile

56.1%

JSON

Related for NVD:CVE-2016-10461

prion1 cve1 cvelist1