MOABI : Continuous Software Improvement

CVE-2015-9212
Description	In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, and SD 800, lack of input validation while processing TZ_PR_CMD_SAVE_KEY command could lead to a buffer overread.
Impact	CVSS v3 : 9.8 CRITICAL CVSS v2 : 10 HIGH
Type	CWE-119
Attack Vector	CVSSv2 Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C
Quick links	CVE, NVD, CERT, Metasploit, Exploit-db, Fulldisc, Bugtraq, Microsoft, Red Hat, Debian, GitHub code/issues, Google
References	http://www.securityfocus.com/bid/103671 https://source.android.com/security/bulletin/2018-04-01