CVE-2017-9710
CVE-2017-9710
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.1%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
05 Dec 2017Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, IOCTL interface to send QMI NOTIFY REQ messages can be called from multiple contexts which can result in buffer overflow of msg cache.
Affected products
Qualcomm, Inc. · Android for MSM, Firefox OS for MSM, QRD Android