Lucene search
QualcommCVELIST:CVE-2014-9986HistoryApr 02, 2018 - 12:00 a.m.
CVE-2014-9986
2018-04-0200:00:00
qualcomm
www.cve.org
0.001 Low
EPSS
Percentile
43.1%
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, and SD 820A, in playready_licacq_process_response(), βcbResponseβ value is controlled by HLOS, and there is no validation on this length. If βcbResponseβ is too large, memory overread occurs.
CNA Affected
[
{
"product": "Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear",
"vendor": "Qualcomm, Inc.",
"versions": [
{
"status": "affected",
"version": "MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, SD 820A"
}
]
}
]Related
nvd
nvd
CVE-2014-9986
2018-04-18 14:29:01
prion
prion
Buffer overflow
2018-04-18 14:29:00
cve
cve
CVE-2014-9986
2018-04-18 14:29:01