CVE-2016-10467 in Android정보

요약

\~에 의해 MITRE

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 615/16/SD 415, SD 617, SD 650/52, SD 800, SD 808, SD 820, and SD 820A, function ce_pkcs1_pss_padding_verify_auto_recover_saltlen assumes that the size of the encoded message is equal to the size of the RSA modulus. This assumption is true for most RSA keys, but it fails when modulus_bitlen % 8 == 1.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

예약하다

2017. 08. 16.

공개

2018. 04. 18.

모더레이션

수락

항목

VDB-116525

CPE

준비됨

CWE

CWE-320 (확인됨)

CVSS

9.8 (NVD)

EPSS

0.01252

KEV

아니요

활동

매우 낮음

부문

Police, Finance, ...

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-10467
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-10467
CVE Details	https://www.cvedetails.com/cve/CVE-2016-10467/

◂ 이전 개요 다음 ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!