Unrated severityNVD Advisory· Published Feb 25, 2019· Updated Aug 5, 2024
CVE-2018-13904
CVE-2018-13904
Description
Improper input validation in SCM handler to access storage in TZ can lead to unauthorized access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in versions MDM9206, MDM9607, MDM9650, MDM9655, QCS605, SD 410/12, SD 675, SD 712 / SD 710 / SD 670, SD 8CX, SXR1130.
Affected products
2- Range: Multiple versions (MDM9206, MDM9607, MDM9650, MDM9655, QCS605, SD 410/12, SD 675, SD 712 / SD 710 / SD 670, SD 8CX, SXR1130)
- Qualcomm, Inc./Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobilev5Range: MDM9206, MDM9607, MDM9650, MDM9655, QCS605, SD 410/12, SD 675, SD 712 / SD 710 / SD 670, SD 8CX, SXR1130
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/106845mitrevdb-entryx_refsource_BID
- www.qualcomm.com/company/product-security/bulletinsmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.