While accessing SafeSwitch services, third party can manipulate a given device and perform unauthorized operation due to lack of checking of same state transitions in Snapdragon Automobile, Snapdragon Mobile in version MSM8996AU, SD 410/12, SD 617, SD 650/52, SD 810, SD 820, SD 820A
References
Link | Resource |
---|---|
https://source.android.com/security/bulletin/2018-09-01#qualcomm-closed-source-components | Third Party Advisory |
https://www.qualcomm.com/company/product-security/bulletins | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: qualcomm
Published: 2018-10-23T13:00:00
Updated: 2018-10-23T12:57:01
Reserved: 2018-06-15T00:00:00
Link: CVE-2017-18312
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-10-23T13:29:02.697
Modified: 2019-10-03T00:03:26.223
Link: CVE-2017-18312
JSON object: View
Redhat Information
No data.
CWE