CVE-2013-4739

CVE Database · CVE-2013-4739

CVE-2013-4739

· N/AModified

CVSS v3.1

N/A

EPSS

0.25%

Published

Feb 3, 2014

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to obtain sensitive information from kernel stack memory via (1) a crafted MSM_MCR_IOCTL_EVT_GET ioctl call, related to drivers/media/platform/msm/camera_v1/mercury/msm_mercury_sync.c, or (2) a crafted MSM_JPEG_IOCTL_EVT_GET ioctl call, related to drivers/media/platform/msm/camera_v2/jpeg_10/msm_jpeg_sync.c.

Weaknesses (CWE)

CWE-200

Affected Products (2)

codeaurora · android-msmvulnerable

qualcomm · quic_mobile_station_modem_kernelvulnerable

References (4)

http://www.openwall.com/lists/oss-security/2013/10/15/4

https://www.codeaurora.org/projects/security-advisories/stack-based-buffer-overflow-and-memory-disclosure-camera-driver-cve-2013-4748-cve-2013-4739

Vendor Advisory

http://www.openwall.com/lists/oss-security/2013/10/15/4

https://www.codeaurora.org/projects/security-advisories/stack-based-buffer-overflow-and-memory-disclosure-camera-driver-cve-2013-4748-cve-2013-4739

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs