Mageni Mageni Security LLC

Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

CVE-2016-10420

CVE information

Published

6 years ago

Last Modified

5 years ago

CVSSv2.0 Severity

High

CVSSv3.1 Severity

Medium

Impact Analysis

Share

Description

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 600, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, SD 835, and SDX20, while playing back a .flv clip which doesn't have an inbuilt seek table, a dynamic index table access is out of bounds and leads to crash..

CVSSv2.0 Score

Severity
High
Base Score
7.1/10
Exploit Score
8.6/10
Access Vector
Network
Access Complexity
Medium
Authentication Required
None
Impact Score
6.9/10
Confidentiality Impact
None
Availability Impact
Complete
Integrity Impact
None

CVSSv3.1 Score

Severity
Medium
Base Score
5.5/10
Exploit Score
1.8/10
Access Vector
Local
Access Complexity
Low
Privileges Required
None
Impact Score
3.6/10
Confidentiality Impact
None
Availability Impact
High
Integrity Impact
None
Scope
Unchanged
User Interaction
Required

Products Affected

CPE Affected Vulnerable Excluding Edit
cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_210_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_210:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_212_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_212:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_205_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_205:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_400_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_400:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_410_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_410:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_412_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_412:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_425_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_425:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_430_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_430:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_450_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_450:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_615_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_615:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_616_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_616:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_415_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_415:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_617_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_617:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_625_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_625:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_650_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_650:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_652_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_652:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_800_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_800:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_808_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_808:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_810_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_810:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_820_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_820:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_835_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_835:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sd_600_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sd_600:-:*:*:*:*:*:*:*
  No
-
cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*
  No
-

References