CVE-2017-18071

Name of the Vulnerable Software and Affected Versions: Android versions prior to security patch level 2018-04-05

Description: The issue is related to a debug policy bypass in Android, specifically affecting Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MSM8909W, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 650/52. It is associated with inadequate access control in the Qualcomm Trusted Execution Environment component of the Android operating system. Exploitation of this issue could allow a remote attacker to bypass debug policy restrictions, potentially impacting the confidentiality, integrity, and availability of protected information.

Recommendations: For Android versions prior to security patch level 2018-04-05, update to a version with a security patch level of 2018-04-05 or later to resolve the issue.