// For flags

CVE-2014-10043

 

Severity Score

7.5
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, and SD 800, while reading PlayReady rights string information from command buffer (which is sent from non-secure side), if length of rights string is very large, a buffer over read occurs, exposing TZ App memory to non-secure side.

En Android antes del nivel de parcheo de seguridad del 2018-04-05 o antes en Qualcomm Snapdragon Mobile y Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12 y SD 800, mientras se lee información de una cadena rights de PlayReady de un búfer de comando (que se envía desde un lado no seguro), si el tamaño de la cadena rights es muy grande, ocurre una sobrelectura de búfer, lo que expone la memoria TZ de la App al lado no seguro.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2017-08-16 CVE Reserved
  • 2018-04-18 CVE Published
  • 2023-09-09 EPSS Updated
  • 2024-09-17 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (2)
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Qualcomm
Search vendor "Qualcomm"
Msm8909w Firmware
Search vendor "Qualcomm" for product "Msm8909w Firmware"
--
Affected
in Qualcomm
Search vendor "Qualcomm"
Msm8909w
Search vendor "Qualcomm" for product "Msm8909w"
--
Safe
Qualcomm
Search vendor "Qualcomm"
Sd 210 Firmware
Search vendor "Qualcomm" for product "Sd 210 Firmware"
--
Affected
in Qualcomm
Search vendor "Qualcomm"
Sd 210
Search vendor "Qualcomm" for product "Sd 210"
--
Safe
Qualcomm
Search vendor "Qualcomm"
Sd 212 Firmware
Search vendor "Qualcomm" for product "Sd 212 Firmware"
--
Affected
in Qualcomm
Search vendor "Qualcomm"
Sd 212
Search vendor "Qualcomm" for product "Sd 212"
--
Safe
Qualcomm
Search vendor "Qualcomm"
Sd 205 Firmware
Search vendor "Qualcomm" for product "Sd 205 Firmware"
--
Affected
in Qualcomm
Search vendor "Qualcomm"
Sd 205
Search vendor "Qualcomm" for product "Sd 205"
--
Safe
Qualcomm
Search vendor "Qualcomm"
Sd 400 Firmware
Search vendor "Qualcomm" for product "Sd 400 Firmware"
--
Affected
in Qualcomm
Search vendor "Qualcomm"
Sd 400
Search vendor "Qualcomm" for product "Sd 400"
--
Safe
Qualcomm
Search vendor "Qualcomm"
Sd 410 Firmware
Search vendor "Qualcomm" for product "Sd 410 Firmware"
--
Affected
in Qualcomm
Search vendor "Qualcomm"
Sd 410
Search vendor "Qualcomm" for product "Sd 410"
--
Safe
Qualcomm
Search vendor "Qualcomm"
Sd 412 Firmware
Search vendor "Qualcomm" for product "Sd 412 Firmware"
--
Affected
in Qualcomm
Search vendor "Qualcomm"
Sd 412
Search vendor "Qualcomm" for product "Sd 412"
--
Safe
Qualcomm
Search vendor "Qualcomm"
Sd 800 Firmware
Search vendor "Qualcomm" for product "Sd 800 Firmware"
--
Affected
in Qualcomm
Search vendor "Qualcomm"
Sd 800
Search vendor "Qualcomm" for product "Sd 800"
--
Safe