CVE-2014-10043
Description
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, and SD 800, while reading PlayReady rights string information from command buffer (which is sent from non-secure side), if length of rights string is very large, a buffer over read occurs, exposing TZ App memory to non-secure side.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A buffer overread in Qualcomm secure monitor on multiple Snapdragon platforms leaks TrustZone memory to non-secure side via crafted PlayReady rights string.
Vulnerability
A buffer overread vulnerability exists in the Qualcomm secure monitor (TZ App) on multiple Snapdragon platforms, including MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, and SD 800. While processing PlayReady rights string information from a command buffer sent from the non-secure side, a large length value causes the secure monitor to read beyond the intended buffer boundary. This issue is present in Android security patch levels before the April 2018 patch on affected Qualcomm chipsets [1].
Exploitation
An attacker requires the ability to send crafted command buffers to the secure monitor from the non-secure side. By embedding an overly long rights string length in the PlayReady command, the attacker triggers a controlled out-of-bounds read. No user interaction or elevated privileges are needed beyond the ability to invoke the vulnerable service from the normal Android application layer [1].
Impact
Successful exploitation results in an information disclosure, exposing TrustZone (TZ) App memory to the non-secure side. This can leak sensitive data stored in the secure world, such as cryptographic keys or other protected assets, to an untrusted application. The attacker gains unauthorized read access to secure memory regions [1].
Mitigation
The issue is fixed in Android security patch level 2018-04-05 or later. Users should apply the April 2018 Android security update from their device vendor. No workarounds are available if the patch is not yet applied. There is no indication that this CVE is listed on CISA's Known Exploited Vulnerabilities catalog [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
3- Qualcomm, Inc./Snapdragon Mobile, Snapdragon Wearv5Range: MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 800
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.securityfocus.com/bid/103671mitrevdb-entryx_refsource_BID
- source.android.com/security/bulletin/2018-04-01mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.