cvedb.io
CVE-2015-9146
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2018-04-18T14:29:04.917 · Last modified 2026-06-17T00:35:53.710

Summary

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625, MDM9635M, MDM9645, MDM9650, MDM9655, SD 400, SD 800, SD 835, SD 845, SD 850, and SDX20, when QDI read, write, or ioctl are called, the passed-in pointer is not properly validated before accessing it for the delayed response.

Affected products

qualcomm — mdm9625_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when qualcomm ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.