CVE-2015-9160
Description
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9607, MDM9635M, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, SD 820A, SD 835, SD 845, and SD 850, integer overflow may occur when values passed from HLOS (graphics driver busy time, and total time) in TZBSP_GFX_DCVS_UPDATE_ID are very large.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Integer overflow in Qualcomm TZBSP graphics driver on multiple Snapdragon platforms leads to potential privilege escalation or system compromise.
Vulnerability
An integer overflow vulnerability exists in the Qualcomm TZBSP (TrustZone-based system) graphics driver across a wide range of Snapdragon platforms. The flaw occurs when values passed from HLOS (High-Level Operating System, such as Android) for graphics driver busy time and total time are processed in the TZBSP_GFX_DCVS_UPDATE_ID function. If these values are very large, an integer overflow can occur. Affected chipsets include MDM9206, MDM9607, MDM9635M, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, SD 820A, SD 835, SD 845, and SD 850. The vulnerability impacts Android versions before the 2018-04-05 security patch level [1].
Exploitation
An attacker would need to be able to supply crafted values for the graphics driver busy time and total time to the TZBSP_GFX_DCVS_UPDATE_ID function from the HLOS layer. This likely requires local access to the device and the ability to interact with the graphics driver or system services that provide these time values. The precise sequence of steps is not detailed in public references, but the overflow is triggered by passing very large integers as arguments [1].
Impact
Successful exploitation of the integer overflow could lead to memory corruption or other unintended behavior within the TrustZone environment. This may allow an attacker to escalate privileges, potentially gaining elevated access to system resources or compromising the secure world of the chipset. The impact could range from denial of service to full system compromise, depending on the attacker's ability to control the overflow [1].
Mitigation
Google and Qualcomm addressed this vulnerability in the Android security patch dated 2018-04-05. Users should apply the April 2018 or later security updates to their devices. No workarounds are documented for devices that cannot be updated. The vulnerability is not listed in the Known Exploited Vulnerabilities (KEV) catalog as of the latest update [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: < Android security patch level 2018-04-05
- Qualcomm, Inc./Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wearv5Range: MDM9206, MDM9607, MDM9635M, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, SD 820A, SD 835, SD 845, SD 850
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.securityfocus.com/bid/103671mitrevdb-entryx_refsource_BID
- source.android.com/security/bulletin/2018-04-01mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.