← back
CVE-2016-2502

CVE-2016-2502

EPSS 0.5%
drivers/usb/gadget/f_serial.c in the Qualcomm USB driver in Android before 2016-07-05 on Nexus 5X and 6P devices allows attackers to gain privileges via a large size in a GSER_IOCTL ioctl call, aka Android internal bug 27657963 and Qualcomm internal bug CR997044.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://source.android.com/security/bulletin/2016-07-01.htmlhttps://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=0bc45d7712eabe315ce8299a49d16433c3801156