Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.7
CVSSv2

CVE-2017-13218

Published: 12/01/2018 Updated: 19/07/2018
CVSS v2 Base Score: 4.7 | Impact Score: 6.9 | Exploitability Score: 3.4
CVSS v3 Base Score: 4.7 | Impact Score: 3.6 | Exploitability Score: 1
VMScore: 419
Vector: AV:L/AC:M/Au:N/C:C/I:N/A:N
Subscribe to Android

Vulnerability Summary

Access to CNTVCT_EL0 in Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear could be used for side channel attacks and this could lead to local information disclosure with no additional execution privileges needed in FSM9055, IPQ4019, IPQ8064, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MSM8909W, QCA4531, QCA9980, QCN5502, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SD 845.

Vulnerable Product Search on Vulmon Subscribe to Product

google android -

Github Repositories

https://github.com/Divested-Mobile/cve_checker

A tool for downloading, checking, and applying (CVE) patches to a repository.

DivestOS CVE Patcher A tool for downloading, checking, and applying (CVE) patches to a (kernel) repository Notes on CVE Patching Patches applied may not be relevant to a device's architecture or hardware Patches can make issues worse, or create new issues Backported patches do not receive much review Patches may not completely mitigate the issue they intend to There are

https://github.com/Divested-Mobile/CVE_Checker

A tool for downloading, checking, and applying (CVE) patches to a repository.

DivestOS CVE Patcher A tool for downloading, checking, and applying (CVE) patches to a (kernel) repository Notes on CVE Patching Patches applied may not be relevant to a device's architecture or hardware Patches can make issues worse, or create new issues Backported patches do not receive much review Patches may not completely mitigate the issue they intend to There are

References

CWE-200https://source.android.com/security/bulletin/2018-01-01http://www.securitytracker.com/id/1040106http://www.securityfocus.com/bid/102390https://www.codeaurora.org/security-bulletin/2018/06/04/june-2018-code-aurora-security-bulletinhttp://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.htmlhttps://nvd.nist.govhttps://github.com/Divested-Mobile/cve_checker
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040privilege escalationCVE-2024-4112CVE-2024-32872man-in-the-middleCVE-2024-32788bypassCVE-2024-3400CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook