var-201810-0040
Vulnerability from variot
XBL sec mem dump system call allows complete control of EL3 by unlocking all XPUs if enable fuse is not blown in Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 835. Snapdragon Mobile and Snapdragon Wear Contains an access control vulnerability.Information is acquired, information is falsified, and denial of service (DoS) May be in a state. Qualcomm MDM9206, etc. are the central processing unit (CPU) products of Qualcomm (Qualcomm) applied to different platforms. An input validation vulnerability exists in the Core in several Qualcomm Snapdragon products. An attacker could exploit this vulnerability to take full control of EL3. The following products (used in mobile devices and watches) are affected: Qualcomm MDM9206; MDM9607; MDM9650; SD 210; SD 212; SD 205; SD 835
Show details on source website{
"affected_products": {
"_id": null,
"data": [
{
"_id": null,
"model": "sd 205",
"scope": "eq",
"trust": 1.6,
"vendor": "qualcomm",
"version": null
},
{
"_id": null,
"model": "sd 210",
"scope": "eq",
"trust": 1.6,
"vendor": "qualcomm",
"version": null
},
{
"_id": null,
"model": "sd 212",
"scope": "eq",
"trust": 1.6,
"vendor": "qualcomm",
"version": null
},
{
"_id": null,
"model": "sd 835",
"scope": "eq",
"trust": 1.6,
"vendor": "qualcomm",
"version": null
},
{
"_id": null,
"model": "mdm9650",
"scope": "eq",
"trust": 1.6,
"vendor": "qualcomm",
"version": null
},
{
"_id": null,
"model": "mdm9206",
"scope": "eq",
"trust": 1.6,
"vendor": "qualcomm",
"version": null
},
{
"_id": null,
"model": "mdm9607",
"scope": "eq",
"trust": 1.6,
"vendor": "qualcomm",
"version": null
},
{
"_id": null,
"model": "mdm9206",
"scope": null,
"trust": 0.8,
"vendor": "qualcomm",
"version": null
},
{
"_id": null,
"model": "mdm9607",
"scope": null,
"trust": 0.8,
"vendor": "qualcomm",
"version": null
},
{
"_id": null,
"model": "mdm9650",
"scope": null,
"trust": 0.8,
"vendor": "qualcomm",
"version": null
},
{
"_id": null,
"model": "sd 205",
"scope": null,
"trust": 0.8,
"vendor": "qualcomm",
"version": null
},
{
"_id": null,
"model": "sd 210",
"scope": null,
"trust": 0.8,
"vendor": "qualcomm",
"version": null
},
{
"_id": null,
"model": "sd 212",
"scope": null,
"trust": 0.8,
"vendor": "qualcomm",
"version": null
},
{
"_id": null,
"model": "sd 835",
"scope": null,
"trust": 0.8,
"vendor": "qualcomm",
"version": null
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2017-014309"
},
{
"db": "CNNVD",
"id": "CNNVD-201810-1164"
},
{
"db": "NVD",
"id": "CVE-2017-18305"
}
]
},
"configurations": {
"_id": null,
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/o:qualcomm:mdm9206_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:qualcomm:mdm9607_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:qualcomm:mdm9650_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:qualcomm:sd_205_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:qualcomm:sd_210_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:qualcomm:sd_212_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:qualcomm:sd_835_firmware",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2017-014309"
}
]
},
"cve": "CVE-2017-18305",
"cvss": {
"_id": null,
"data": [
{
"cvssV2": [
{
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 3.4,
"id": "CVE-2017-18305",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "MEDIUM",
"trust": 1.9,
"vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 6.9,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 3.4,
"id": "VHN-109414",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:L/AC:M/AU:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 1.0,
"id": "CVE-2017-18305",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"trust": 1.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2017-18305",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2017-18305",
"trust": 0.8,
"value": "High"
},
{
"author": "CNNVD",
"id": "CNNVD-201810-1164",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-109414",
"trust": 0.1,
"value": "MEDIUM"
},
{
"author": "VULMON",
"id": "CVE-2017-18305",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-109414"
},
{
"db": "VULMON",
"id": "CVE-2017-18305"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-014309"
},
{
"db": "CNNVD",
"id": "CNNVD-201810-1164"
},
{
"db": "NVD",
"id": "CVE-2017-18305"
}
]
},
"description": {
"_id": null,
"data": "XBL sec mem dump system call allows complete control of EL3 by unlocking all XPUs if enable fuse is not blown in Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 835. Snapdragon Mobile and Snapdragon Wear Contains an access control vulnerability.Information is acquired, information is falsified, and denial of service (DoS) May be in a state. Qualcomm MDM9206, etc. are the central processing unit (CPU) products of Qualcomm (Qualcomm) applied to different platforms. An input validation vulnerability exists in the Core in several Qualcomm Snapdragon products. An attacker could exploit this vulnerability to take full control of EL3. The following products (used in mobile devices and watches) are affected: Qualcomm MDM9206; MDM9607; MDM9650; SD 210; SD 212; SD 205; SD 835",
"sources": [
{
"db": "NVD",
"id": "CVE-2017-18305"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-014309"
},
{
"db": "VULHUB",
"id": "VHN-109414"
},
{
"db": "VULMON",
"id": "CVE-2017-18305"
}
],
"trust": 1.8
},
"external_ids": {
"_id": null,
"data": [
{
"db": "NVD",
"id": "CVE-2017-18305",
"trust": 2.6
},
{
"db": "SECTRACK",
"id": "1041432",
"trust": 1.8
},
{
"db": "JVNDB",
"id": "JVNDB-2017-014309",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201810-1164",
"trust": 0.7
},
{
"db": "VULHUB",
"id": "VHN-109414",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2017-18305",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-109414"
},
{
"db": "VULMON",
"id": "CVE-2017-18305"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-014309"
},
{
"db": "CNNVD",
"id": "CNNVD-201810-1164"
},
{
"db": "NVD",
"id": "CVE-2017-18305"
}
]
},
"id": "VAR-201810-0040",
"iot": {
"_id": null,
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-109414"
}
],
"trust": 0.01
},
"last_update_date": "2024-11-23T21:25:33.482000Z",
"patch": {
"_id": null,
"data": [
{
"title": "October 2018 Qualcomm Technologies, Inc. Security Bulletin",
"trust": 0.8,
"url": "https://www.qualcomm.com/company/product-security/bulletins"
},
{
"title": "Multiple Qualcomm Snapdragon Fixes for product input validation vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=86262"
},
{
"title": "Android Security Bulletins: Android Security Bulletin\u2014August 2018",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=android_security_bulletins\u0026qid=746dc14fcd3f5e139648cfdc9d9039a9"
},
{
"title": "SamsungReleaseNotes",
"trust": 0.1,
"url": "https://github.com/samreleasenotes/SamsungReleaseNotes "
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2017-18305"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-014309"
},
{
"db": "CNNVD",
"id": "CNNVD-201810-1164"
}
]
},
"problemtype_data": {
"_id": null,
"data": [
{
"problemtype": "NVD-CWE-noinfo",
"trust": 1.0
},
{
"problemtype": "CWE-284",
"trust": 0.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-109414"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-014309"
},
{
"db": "NVD",
"id": "CVE-2017-18305"
}
]
},
"references": {
"_id": null,
"data": [
{
"trust": 1.8,
"url": "https://source.android.com/security/bulletin/2018-08-01#qualcomm-closed-source-components"
},
{
"trust": 1.8,
"url": "https://www.qualcomm.com/company/product-security/bulletins"
},
{
"trust": 1.8,
"url": "http://www.securitytracker.com/id/1041432"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-18305"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2017-18305"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
},
{
"trust": 0.1,
"url": "https://source.android.com/security/bulletin/2018-08-01.html"
},
{
"trust": 0.1,
"url": "https://github.com/samreleasenotes/samsungreleasenotes"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-109414"
},
{
"db": "VULMON",
"id": "CVE-2017-18305"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-014309"
},
{
"db": "CNNVD",
"id": "CNNVD-201810-1164"
},
{
"db": "NVD",
"id": "CVE-2017-18305"
}
]
},
"sources": {
"_id": null,
"data": [
{
"db": "VULHUB",
"id": "VHN-109414",
"ident": null
},
{
"db": "VULMON",
"id": "CVE-2017-18305",
"ident": null
},
{
"db": "JVNDB",
"id": "JVNDB-2017-014309",
"ident": null
},
{
"db": "CNNVD",
"id": "CNNVD-201810-1164",
"ident": null
},
{
"db": "NVD",
"id": "CVE-2017-18305",
"ident": null
}
]
},
"sources_release_date": {
"_id": null,
"data": [
{
"date": "2018-10-23T00:00:00",
"db": "VULHUB",
"id": "VHN-109414",
"ident": null
},
{
"date": "2018-10-23T00:00:00",
"db": "VULMON",
"id": "CVE-2017-18305",
"ident": null
},
{
"date": "2019-01-16T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2017-014309",
"ident": null
},
{
"date": "2018-10-24T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201810-1164",
"ident": null
},
{
"date": "2018-10-23T13:29:02.557000",
"db": "NVD",
"id": "CVE-2017-18305",
"ident": null
}
]
},
"sources_update_date": {
"_id": null,
"data": [
{
"date": "2019-10-03T00:00:00",
"db": "VULHUB",
"id": "VHN-109414",
"ident": null
},
{
"date": "2019-10-03T00:00:00",
"db": "VULMON",
"id": "CVE-2017-18305",
"ident": null
},
{
"date": "2019-01-16T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2017-014309",
"ident": null
},
{
"date": "2019-10-23T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201810-1164",
"ident": null
},
{
"date": "2024-11-21T03:19:49.173000",
"db": "NVD",
"id": "CVE-2017-18305",
"ident": null
}
]
},
"threat_type": {
"_id": null,
"data": "local",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201810-1164"
}
],
"trust": 0.6
},
"title": {
"_id": null,
"data": "Snapdragon Mobile and Snapdragon Wear Vulnerabilities in access control",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2017-014309"
}
],
"trust": 0.8
},
"type": {
"_id": null,
"data": "input validation",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201810-1164"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…