{ "name": "CVE-2014-9902", "CVE": [ [ "CVE-2014-9902", "Bulletin-CVE-2014-9902" ] ], "Coordinated_disclosure": "unknown", "Categories": [ "Remote code execution vulnerability in Qualcomm Wi-Fi driver" ], "Details": [ [ "Buffer overflow in CORE/SYS/legacy/src/utils/src/dot11f.c in the Qualcomm Wi-Fi driver in Android before 2016-08-05 on Nexus 7 (2013) devices allows remote attackers to execute arbitrary code via a crafted Information Element (IE) in an 802.11 management frame, aka Android internal bug 28668638 and Qualcomm internal bugs CR553937 and CR553941.", "NIST-CVE-2014-9902" ] ], "Discovered_on": [], "Discovered_by": [], "Submission": [ { "by": "dcc52", "on": "2019-07-29" } ], "Reported_on": [ [ "2016-08-01", "Bulletin-CVE-2014-9902" ] ], "Fixed_on": [ [ "2013-11-07", "QC-CR#553937" ] ], "Fix_released_on": [], "Affected_versions": [], "Affected_devices": [], "Affected_versions_regexp": [ "" ], "Affected_manufacturers": [ [ "Qualcomm", "Bulletin-CVE-2014-9902" ] ], "Fixed_versions": [], "Fixed_versions_regexp": [ "" ], "references": { "QC-CR#553937": { "url": "https://us.codeaurora.org/cgit/quic/la//platform/vendor/qcom-opensource/wlan/prima/commit/?id=3b1c44a3a7129dc25abe2c23543f6f66c59e8f50" }, "QC-CR#553941": { "url": "https://us.codeaurora.org/cgit/quic/la//platform/vendor/qcom-opensource/wlan/prima/commit/?id=3b1c44a3a7129dc25abe2c23543f6f66c59e8f50" }, "A-28668638": {}, "NIST-CVE-2014-9902": { "url": "https://nvd.nist.gov/vuln/data-feeds" }, "Bulletin-CVE-2014-9902": { "url": "https://source.android.com/security/bulletin/2016-08-01.html" } }, "Surface": [ "remote" ], "Vector": [ "memory-corruption" ], "Target": [ "driver" ], "Channel": [ "remote" ], "Condition": [ "attacker-on-same-network" ], "Privilege": [ "kernel" ], "CWE": [ [ "CWE-119", "NIST-CVE-2014-9902" ] ] }