CVE-2018-11932 Information
Feb 14, 2021
cve
Description
Improper input validation can lead RW access to secure subsystem from HLOS in Snapdragon Auto Snapdragon Compute Snapdragon Connectivity Snapdragon Consumer Electronics Connectivity Snapdragon Consumer IOT Snapdragon Industrial IOT Snapdragon Mobile in versions MDM9650 MDM9655 MSM8996AU QCS605 SD 410/12 SD 615/16/SD 415 SD 675 SD 712 / SD 710 / SD 670 SD 820 SD 820A SD 835 SD 845 / SD 850 SD 8CX SXR1130.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Reference
http://www.securityfocus.com/bid/106845 https://www.qualcomm.com/company/product-security/bulletins
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
HIGH
Base Score
NONE
Base Severity
9.1
Share on: