VYPR
Critical severity9.8NVD Advisory· Published Apr 11, 2018· Updated Jun 17, 2026

CVE-2017-18140

CVE-2017-18140

Description

In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9607, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 808, SD 810, SD 820, SD 820A, SD 835, SD 845, when processing a call disconnection, there is an attempt to print the RIL token-id to the debug log. If eMBMS service is enabled while processing the call disconnect, a Use After Free condition may potentially occur.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Google/Androidllm-create
    Range: < 2018-04-05 security patch level
  • Range: < 2018-04-05 security patch level
  • Qualcomm, Inc./Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wearv5
    Range: MDM9206, MDM9607, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 808, SD 810, SD 820, SD 820A, SD 835, SD 845

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.