CVEs-PoC/2015/CVE-2015-9146.md

### [CVE-2015-9146](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-9146)
![](https://img.shields.io/static/v1?label=Product&message=Snapdragon%20Mobile&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Untrusted%20pointer%20dereference%20in%20QDI%20read%2C%20write%2C%20or%20ioctl&color=brighgreen)

### Description

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625, MDM9635M, MDM9645, MDM9650, MDM9655, SD 400, SD 800, SD 835, SD 845, SD 850, and SDX20, when QDI read, write, or ioctl are called, the passed-in pointer is not properly validated before accessing it for the delayed response.

### POC

#### Reference
- http://www.securityfocus.com/bid/103671

#### Github
No PoCs found on GitHub currently.