CVE-2018-11951

Name of the Vulnerable Software and Affected Versions Snapdragon Mobile versions SD 845, SD 850

Description The issue is related to improper access control in the core module, specifically with XBL LOADER performing the ZI region clear for QTEE instead of XBL SEC. This affects the security of the system.

Recommendations For versions SD 845 and SD 850, consider restricting access to the core module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.