CVE-2017-18318
CRITICAL
9,8
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
HIGH
10,0
Source: [email protected]
Access Vector: network
Access Complexity: low
Authentication: none
Confidentiality: complete
Integrity: complete
Availability: complete
Description
AI Translation Available
Missing validation check on CRL issuer name in Snapdragon Automobile, Snapdragon Mobile in versions MSM8996AU, SD 410/12, SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 810, SD 820, SD 820A.
EPSS (Exploit Prediction Scoring System)
Trend Analysis
EPSS (Exploit Prediction Scoring System)
Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.
EPSS Score
0,0022
Percentile
0,4th
Updated
EPSS Score Trend (Last 91 Days)
20
Improper Input Validation
StableCommon Consequences
Security Scopes Affected:
Availability
Confidentiality
Integrity
Potential Impacts:
Dos: Crash, Exit, Or Restart
Dos: Resource Consumption (Cpu)
Dos: Resource Consumption (Memory)
Read Memory
Read Files Or Directories
Modify Memory
Execute Unauthorized Code Or Commands
Applicable Platforms
Technologies:
AI/ML
Operating System
Sd 625 Firmware by Qualcomm
CPE Identifier
View Detailed Analysis
cpe:2.3:o:qualcomm:sd_625_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Sd 652 Firmware by Qualcomm
CPE Identifier
View Detailed Analysis
cpe:2.3:o:qualcomm:sd_652_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Msm8996Au Firmware by Qualcomm
CPE Identifier
View Detailed Analysis
cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Sd 810 Firmware by Qualcomm
CPE Identifier
View Detailed Analysis
cpe:2.3:o:qualcomm:sd_810_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Sd 412 Firmware by Qualcomm
CPE Identifier
View Detailed Analysis
cpe:2.3:o:qualcomm:sd_412_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Sd 650 Firmware by Qualcomm
CPE Identifier
View Detailed Analysis
cpe:2.3:o:qualcomm:sd_650_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Sd 430 Firmware by Qualcomm
CPE Identifier
View Detailed Analysis
cpe:2.3:o:qualcomm:sd_430_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Sd 425 Firmware by Qualcomm
CPE Identifier
View Detailed Analysis
cpe:2.3:o:qualcomm:sd_425_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Sd 820 Firmware by Qualcomm
CPE Identifier
View Detailed Analysis
cpe:2.3:o:qualcomm:sd_820_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Sd 450 Firmware by Qualcomm
CPE Identifier
View Detailed Analysis
cpe:2.3:o:qualcomm:sd_450_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Sd 820A Firmware by Qualcomm
CPE Identifier
View Detailed Analysis
cpe:2.3:o:qualcomm:sd_820a_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Sd 410 Firmware by Qualcomm
CPE Identifier
View Detailed Analysis
cpe:2.3:o:qualcomm:sd_410_firmware:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://www.qualcomm.com/company/product-security/bulletins
http://www.securityfocus.com/bid/105838
https://www.qualcomm.com/company/product-security/bulletins
http://www.securityfocus.com/bid/105838