CVE-2015-9196

CVE-2015-9196 is a critical vulnerability published on April 18, 2018. In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Small Cell SoC FSM9055, MDM9635M, SD 400, and SD 800, improper input validation in tzbsp_ocmem can cause privilege escalation.

CVE-2015-9196 was first published in the National Vulnerability Database on April 18, 2018, with the most recent update on November 21, 2024. EchelonGraph re-ingests CVE updates from NVD on a 2-hour cycle, so this page reflects the latest published state.

CVE-2015-9196 has a CVSS v3 base score of 9.8 (NVD).

Patch to the fixed version published by the affected vendor. Where vendor advisories exist for CVE-2015-9196, EchelonGraph cross-links them in the Vendor Advisories panel below — those typically contain the canonical remediation steps, fixed version numbers, and any vendor-specific mitigations.