CVE-2016-10390
critical
CVSS v3
9.8
CVSS v2
10.0
VIR risk
9.8
Description
In all Qualcomm products with Android releases from CAF using the Linux kernel, when downloading a file, an excessive amount of memory may be consumed.
Predictions
Exploit likelihood
97%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: product-security@qualcomm.com — https://source.android.com/security/bulletin/2017-07-01
References
CWEs
CWE-399
Verify integrity in audit chain (admin only). AS-IS.