Integer Overflow Vulnerability in Widevine App TZ_WV_CMD_DECRYPT_VIDEO on Qualcomm Snapdragon Mobile SD Processors

Integer Overflow Vulnerability in Widevine App TZ_WV_CMD_DECRYPT_VIDEO on Qualcomm Snapdragon Mobile SD Processors

CVE-2015-9133 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 400, SD 410/12, SD 617, SD 650/52, SD 800, and SD 810, if Widevine App TZ_WV_CMD_DECRYPT_VIDEO is called with a size too large, an integer overflow may occur.

Learn more about our Cis Benchmark Audit For Google Android.