CVE-2017-11088

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon versions MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 430, SD 450, SD 617, SD 625, SD 650/52, SD 820, SD 835, SD 845

Description A SQL injection issue exists due to improper input validation in the Linux io-prefetch component. This could potentially allow for unauthorized access or control.

Recommendations For versions MSM8909W, apply the necessary security patches to fix the SQL injection vulnerability. For versions MSM8996AU, update the io-prefetch component to prevent improper input validation. For versions SD 210/SD 212/SD 205, SD 430, SD 450, SD 617, SD 625, SD 650/52, SD 820, SD 835, SD 845, restrict access to sensitive data to minimize the risk of exploitation until a patch is available.