In Android prior to 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear IPQ4019, MDM9206, MDM9607, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 808, SD 810, SD 820, SD 820A, SD 835, SD 845, and SD 850, DRM provisioning mechanisms used in QSEE applications have a feature to prevent further provisioning. This is done by creating an SFS file called 'finalize_prov_flag.data' at the end of provisioning. When this feature is enabled, provisioning calls check for the existence of the file in order to decide whether to do provisioning or not. Current implementation allows provisioning without sufficient checks.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
qualcomm mdm9206 firmware - |
||
qualcomm mdm9607 firmware - |
||
qualcomm ipq4019 firmware - |
||
qualcomm sd 820a firmware - |
||
qualcomm mdm9650 firmware - |
||
qualcomm msm8909w firmware - |
||
qualcomm sd 210 firmware - |
||
qualcomm sd 212 firmware - |
||
qualcomm sd 205 firmware - |
||
qualcomm sd 400 firmware - |
||
qualcomm sd 410 firmware - |
||
qualcomm sd 412 firmware - |
||
qualcomm sd 425 firmware - |
||
qualcomm sd 430 firmware - |
||
qualcomm sd 450 firmware - |
||
qualcomm sd 615 firmware - |
||
qualcomm sd 616 firmware - |
||
qualcomm sd 415 firmware - |
||
qualcomm sd 617 firmware - |
||
qualcomm sd 625 firmware - |
||
qualcomm sd 650 firmware - |
||
qualcomm sd 652 firmware - |
||
qualcomm sd 800 firmware - |
||
qualcomm sd 808 firmware - |
||
qualcomm sd 810 firmware - |
||
qualcomm sd 820 firmware - |
||
qualcomm sd 835 firmware - |
||
qualcomm sd 845 firmware - |
||
qualcomm sd 850 firmware - |
Vulmon