Privilege Escalation via Crafted Mask Value in Qualcomm Camera Sensor Driver

Privilege Escalation via Crafted Mask Value in Qualcomm Camera Sensor Driver

CVE-2014-9868 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

drivers/media/platform/msm/camera_v2/sensor/csiphy/msm_csiphy.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices allows attackers to gain privileges via an application that provides a crafted mask value, aka Android internal bug 28749721 and Qualcomm internal bug CR511976.

Learn more about our Cis Benchmark Audit For Google Android.