Bypassing Access Restrictions in Qualcomm Components on Nexus 5X and 6P Devices

CVE-2015-8892 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

platform/msm_shared/boot_verifier.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5X and 6P devices allows attackers to bypass intended access restrictions via a digest with trailing data, aka Android internal bug 28822807 and Qualcomm internal bug CR902998.

Learn more about our Cis Benchmark Audit For Google Android.