Out-of-Range Configuration Vulnerability in Qualcomm Snapdragon Mobile and Snapdragon Wear Devices

Out-of-Range Configuration Vulnerability in Qualcomm Snapdragon Mobile and Snapdragon Wear Devices

CVE-2015-9197 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9635M, MDM9640, MDM9645, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 615/16/SD 415, SD 617, SD 650/52, SD 808, and SD 810, when enabling XPUs for SMEM partitions, if configuration values are out of range, memory access outside the SMEM may occur and set incorrect XPU configurations.

Learn more about our Cis Benchmark Audit For Google Android.