CVE-2016-10430

Description

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, and SD 820A, when executing a TA which has been granted privileges to the CPVC MINK class it is possible for the TA to access methods exposed by the CPVC interface.

Affected products

• Qualcomm, Inc. / Snapdragon Automobile, Snapdragon MobileSD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, SD 820A – SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, SD 820A

References

• MISChttps://source.android.com/security/bulletin/2018-04-01
• MISChttp://www.securityfocus.com/bid/103671