VYPR
← All advisories
High severity7.8NVD Advisory· Published Sep 11, 2016· Updated May 6, 2026

CVE-2016-3874

CVE-2016-3874

Description

CORE/HDD/src/wlan_hdd_wext.c in the Qualcomm Wi-Fi driver in Android before 2016-09-05 on Nexus 5X devices does not properly validate the arguments array, which allows attackers to gain privileges via a crafted application that sends a WE_UNIT_TEST_CMD command, aka Android internal bug 29944562 and Qualcomm internal bug CR997797.

Affected products

1
  • Google/Android
    cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
    Range: <=7.0

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

5

News mentions

0

No linked articles in our index yet.