PT-2018-16079 · Qualcomm · Snapdragon

Published

2018-10-26

Updated

2019-10-03

CVE-2018-3588

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon versions MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD 212/SD 205, SD 820, SD 820A, SD 835, SDA660

Description The issue is related to improper access control of the SSC and GPU mapped regions, allowing code injection from HLOS in various Snapdragon products, including Automobile, Mobile, and Wear devices.

Recommendations For versions MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD 212/SD 205, SD 820, SD 820A, SD 835, SDA660, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2018-3588

Affected Products

Snapdragon

PT-2018-16079 · Qualcomm · Snapdragon

CVE-2018-3588

Related Identifiers

Affected Products

References · 2