Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MSM8974, lack of length checking in OEMCrypto_DeriveKeysFromSessionKey() could lead to a buffer overflow vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Android Qualcomm闭源组件缓冲区错误漏洞
Vulnerability Description
Android是美国谷歌(Google)公司和开放手持设备联盟(简称OHA)共同开发的一套以Linux为基础的开源操作系统。Qualcomm MSM8974是美国高通(Qualcomm)公司的一款中央处理器(CPU)产品。 Android 2018-04-05之前版本中的Qualcomm闭源组件存在缓冲区溢出漏洞,该漏洞源于‘OEMCrypto_DeriveKeysFromSessionKey()’函数缺少长度检测。远程攻击者可通过发送特制的请求利用该漏洞在系统上执行任意代码。以下产品(用于移动设备)受到
CVSS Information
N/A
Vulnerability Type
N/A