MOABI : Continuous Software Improvement

CVE-2015-9115
Description	In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9625, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 820, and SD 820A, no address argument validation is performed on calls to the qsee_prng_getdata syscall.
Impact	CVSS v3 : 9.8 CRITICAL CVSS v2 : 10 HIGH
Type	CWE-20
Attack Vector	CVSSv2 Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C
Quick links	CVE, NVD, CERT, Metasploit, Exploit-db, Fulldisc, Bugtraq, Microsoft, Red Hat, Debian, GitHub code/issues, Google
References	http://www.securityfocus.com/bid/103671 https://source.android.com/security/bulletin/2018-04-01