Critical severity9.8NVD Advisory· Published Apr 18, 2018· Updated Jun 17, 2026

CVE-2016-10479

Description

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9607, MDM9615, MDM9635M, MDM9640, SD 210/SD 212/SD 205, SD 400, SD 600, SD 615/16/SD 415, SD 617, SD 650/52, SD 800, SD 810, and SD 820, an arbitrary length value from an incoming message to QMI Proxy can lead to an out-of-bounds write in the stack variable message.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Qualcomm/Snapdragon Mobile MDM9625llm-fuzzy
Range: <2018-04-05
Qualcomm, Inc./Snapdragon Mobilev5
Range: MDM9607, MDM9615, MDM9635M, MDM9640, SD 210/SD 212/SD 205, SD 400, SD 600, SD 615/16/SD 415, SD 617, SD 650/52, SD 800, SD 810, SD 820

Patches

Vulnerability mechanics

References

www.securityfocus.com/bid/103671nvdThird Party AdvisoryVDB Entry
source.android.com/security/bulletin/2018-04-01nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000