CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2016-10424

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0060%
EPSS Percentile43.23th
Published2018年4月18日
Last Modified2024年11月21日

Vulnerability Description

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9650, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 820, SD 820A, SD 835, SD 845, and SD 850, upgrading LibPNG from 1.6.12 to 1.6.21 fixes multiple issues with different CWEs.

Affected Platforms (CPE)

💻
Qualcomm

Mdm9206 Firmware

All versions
💻
Qualcomm

Mdm9650 Firmware

All versions
💻
Qualcomm

Sd 210 Firmware

All versions
💻
Qualcomm

Sd 212 Firmware

All versions
💻
Qualcomm

Sd 205 Firmware

All versions
💻
Qualcomm

Sd 410 Firmware

All versions
💻
Qualcomm

Sd 412 Firmware

All versions
💻
Qualcomm

Sd 425 Firmware

All versions
💻
Qualcomm

Sd 430 Firmware

All versions
💻
Qualcomm

Sd 450 Firmware

All versions
💻
Qualcomm

Sd 615 Firmware

All versions
💻
Qualcomm

Sd 616 Firmware

All versions
💻
Qualcomm

Sd 415 Firmware

All versions
💻
Qualcomm

Sd 617 Firmware

All versions
💻
Qualcomm

Sd 625 Firmware

All versions
💻
Qualcomm

Sd 650 Firmware

All versions
💻
Qualcomm

Sd 652 Firmware

All versions
💻
Qualcomm

Sd 800 Firmware

All versions
💻
Qualcomm

Sd 808 Firmware

All versions
💻
Qualcomm

Sd 820a Firmware

All versions
💻
Qualcomm

Sd 820 Firmware

All versions
💻
Qualcomm

Sd 835 Firmware

All versions
💻
Qualcomm

Sd 845 Firmware

All versions
💻
Qualcomm

Sd 850 Firmware

All versions

References & Advisories

🔗 http://www.securityfocus.com/bid/103671
🔗 https://source.android.com/security/bulletin/2018-04-01
🔗 http://www.securityfocus.com/bid/103671
🔗 https://source.android.com/security/bulletin/2018-04-01

相關漏洞威脅

CVE-2019-23099.8

While storing calibrated data from firmware in cache, An integer overflow may occur since data length received may exceed real dat...

CVE-2019-105429.8

Buffer over-read may occur when downloading a corrupted firmware file that has chunk length in header which doesn`t match the cont...

CVE-2019-22879.8

Improper validation for inputs received from firmware can lead to an out of bound write issue in video driver. in Snapdragon Auto,...

CVE-2019-105729.8

Improper check in video driver while processing data from video firmware can lead to integer overflow and then buffer overflow in ...