High severity7.8NVD Advisory· Published May 16, 2017· Updated May 13, 2026

CVE-2016-10239

Description

In TrustZone access control policy may potentially be bypassed in all Android releases from CAF using the Linux kernel due to improper input validation an integer overflow vulnerability leading to a buffer overflow could potentially occur and a buffer over-read vulnerability could potentially occur.

Affected products

Google/Android
cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
Qualcomm, Inc./All Qualcomm Productsv5
Range: All Android releases from CAF using the Linux kernel

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

source.android.com/security/bulletin/2017-04-01nvdPatchVendor Advisory
www.securityfocus.com/bid/97334nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1038201nvd

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000