Critical severity9.8NVD Advisory· Published Apr 18, 2018· Updated Jun 17, 2026

CVE-2015-9150

Description

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625, MDM9635M, SD 400, and SD 800, while computing the length of memory allocated for a Diag event, if the buffer length is very small or greater than the maximum, an integer overflow may occur, which later results in a buffer overflow.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Google/Androidllm-create
Range: <2018-04-05
Qualcomm/Snapdragon SD 400llm-fuzzy
Range: <2018-04-05
Qualcomm/Snapdragon SD 800llm-fuzzy
Range: <2018-04-05
Qualcomm/Snapdragon Mobile MDM9625llm-fuzzy
Range: <2018-04-05
Qualcomm, Inc./Snapdragon Mobilev5
Range: MDM9625, MDM9635M, SD 400, SD 800

Patches

Vulnerability mechanics

References

www.securityfocus.com/bid/103671nvdThird Party AdvisoryVDB Entry
source.android.com/security/bulletin/2018-04-01nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000