Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2017-14911

Published: 30/03/2018 Updated: 27/04/2018
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Mdm9206 Firmware

Vulnerability Summary

In Android prior to 2018-01-05 on Qualcomm Snapdragon IoT, Snapdragon Mobile, Snapdragon Automobile APQ8096AU, MDM9206, MDM9650, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 430, SD 625, SD 650/52, SD 820, SD 835, it is possible for the XBL loader to skip the authentication of device config.

Vulnerable Product Search on Vulmon Subscribe to Product

qualcomm mdm9206_firmware -

qualcomm apq8096au_firmware -

qualcomm msm8996au_firmware -

qualcomm mdm9650_firmware -

qualcomm sd_210_firmware -

qualcomm sd_212_firmware -

qualcomm sd_205_firmware -

qualcomm sd_425_firmware -

qualcomm sd_430_firmware -

qualcomm sd_625_firmware -

qualcomm sd_650_firmware -

qualcomm sd_652_firmware -

qualcomm sd_820_firmware -

qualcomm sd_835_firmware -

References

CWE-287https://source.android.com/security/bulletin/2018-01-01http://www.securitytracker.com/id/1040106http://www.securityfocus.com/bid/102386https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040privilege escalationCVE-2024-4112CVE-2024-32872man-in-the-middleCVE-2024-32788bypassCVE-2024-3400CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook