ID

VAR-201804-0330

CVE

CVE-2014-10044

TITLE

plural Qualcomm Run on product Android Vulnerabilities in array index validation

DESCRIPTION

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9615, MDM9625, MDM9635M, SD 210/SD 212/SD 205, SD 400, SD 617, SD 800, and SD 820, in the time daemon, unauthorized users can potentially modify system time and cause an array index to be out-of-bound. plural Qualcomm Run on product Android Contains a vulnerability related to array index validation.Information may be tampered with. Google Android is prone to multiple unspecified security vulnerabilities. Little is known about these issues or its effects at this time. We will update this BID as more information emerges. Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance (OHA). Qualcomm MDM9615 and others are central processing unit (CPU) products of Qualcomm (Qualcomm). A security vulnerability exists in Qualcomm closed-source components in Android versions prior to 2018-04-05. An attacker could exploit this vulnerability to cause an array index to go out of bounds. The following products (for mobile devices) are affected: Qualcomm MDM9615; Qualcomm MDM9625; Qualcomm MDM9635M; Qualcomm SD 210; Qualcomm SD 212; Qualcomm SD 205; Qualcomm SD 400; Qualcomm SD 617; Qualcomm SD 800;

AFFECTED PRODUCTS

CVSS

PROBLEMTYPE DATA

THREAT TYPE

remote

TYPE

lack of information

CONFIGURATIONS

PATCH

EXTERNAL IDS

REFERENCES

CREDITS

The vendor reported these issues.

SOURCES

LAST UPDATE DATE

2024-08-14T13:28:32.836000+00:00

SOURCES UPDATE DATE

SOURCES RELEASE DATE