In Android prior to 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 210/SD 212/SD 205, SD 400, SD 425, SD 427, SD 430, SD 435, SD 450, SD 617, SD 625, SD 650/52, SD 800, SD 845, and Snapdragon_High_Med_2016, during module load at TZ Startup, memory statically allocated by modules was not being properly set to zero first. Allowing the module to execute without reset gives it access to information from previous app thus leading to information exposure.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
qualcomm sd 427 firmware - |
||
qualcomm sd 435 firmware - |
||
qualcomm sd 210 firmware - |
||
qualcomm sd 212 firmware - |
||
qualcomm sd 205 firmware - |
||
qualcomm sd 400 firmware - |
||
qualcomm sd 425 firmware - |
||
qualcomm sd 430 firmware - |
||
qualcomm sd 450 firmware - |
||
qualcomm sd 617 firmware - |
||
qualcomm sd 625 firmware - |
||
qualcomm sd 650 firmware - |
||
qualcomm sd 652 firmware - |
||
qualcomm sd 800 firmware - |
||
qualcomm sd 845 firmware - |
Vulmon