CVE-2017-18129

Name of the Vulnerable Software and Affected Versions: Android versions prior to security patch level 2018-04-05

Description: The issue is related to the Qualcomm Trusted Execution Environment component in the Android operating system, specifically concerning insufficient access control when using the internet protocol accelerator (IPA). This can allow a remote attacker to impact the confidentiality, integrity, and availability of protected information. The vulnerability is also associated with information disclosure in an error data area.

Recommendations: For Android versions prior to security patch level 2018-04-05, update to a version with a security patch level of 2018-04-05 or later to resolve the issue. As a temporary workaround, consider restricting access to IPA channels to minimize the risk of exploitation.