Medium severity5.5NVD Advisory· Published Jul 6, 2018· Updated Jun 17, 2026

CVE-2017-15824

Description

In Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05, the function UpdateDeviceStatus() writes a local stack buffer without initialization to flash memory using WriteToPartition() which may potentially leak memory.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Qualcomm/Android for MSMllm-fuzzy
Range: < 2018-06-05
Qualcomm/Firefox OS for MSMllm-fuzzy
Range: < 2018-06-05
Qualcomm/QRD Androidllm-fuzzy
Range: < 2018-06-05
Qualcomm, Inc./Android for MSM, Firefox OS for MSM, QRD Androidv5
Range: All Android releases from CAF using the Linux kernel

Patches

Vulnerability mechanics

References

source.android.com/security/bulletin/pixel/2018-06-01nvdPatchVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.358
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000