Google Nexus Qualcomm TrustZone CVE-2016-5349 Information Disclosure Vulnerability

Google Nexus is prone to an information-disclosure vulnerability.

An attacker can exploit this issue to obtain potentially sensitive information. Information obtained may aid in further attacks.

This issue is being tracked by Android Bug ID A-29083830.

Information

Bugtraq ID: 97364
Class: Configuration Error
CVE: CVE-2016-5349

Remote: Yes
Local: No
Published: Apr 03 2017 12:00AM
Credit: Aravind Machiry of Shellphish Grill Team.
Vulnerable: Google Pixel XL 0
Google Pixel 0
Google Nexus 6P
Google Nexus 6
Google Nexus 5X
Google Android One 0
Google Android 0

Not Vulnerable:

References:

• Android Homepage (Google)
  
• Android Security Bulletinâ??April 2017 (Android )
  
• qseecom: support whitelist memory for qseecom_send_modfd_cmd (CodeAurora)
  

Source: www.securityfocus.com