Published: 23/10/2018 Updated: 03/10/2019

CVSS v2 Base Score: 8.3 | Impact Score: 10 | Exploitability Score: 6.5

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 739

Vector: AV:A/AC:L/Au:N/C:C/I:C/A:C

Improper input validation for GATT data packet received in Bluetooth Controller function can lead to possible memory corruption in Snapdragon Mobile in version QCA9379, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 820, SD 835, SD 845, SD 850, SDM630, SDM636, SDM660, SDM710, Snapdragon_High_Med_2016.

Vulnerable Product	Search on Vulmon	Subscribe to Product
qualcomm qca9379_firmware -
qualcomm sd_210_firmware -
qualcomm sd_212_firmware -
qualcomm sd_205_firmware -
qualcomm sd_410_firmware -
qualcomm sd_412_firmware -
qualcomm sd_425_firmware -
qualcomm sd_427_firmware -
qualcomm sd_430_firmware -
qualcomm sd_435_firmware -
qualcomm sd_450_firmware -
qualcomm sd_615_firmware -
qualcomm sd_616_firmware -
qualcomm sd_415_firmware -
qualcomm sd_625_firmware -
qualcomm sd_650_firmware -
qualcomm sd_652_firmware -
qualcomm sd_820_firmware -
qualcomm sd_835_firmware -
qualcomm sd_845_firmware -
qualcomm sd_850_firmware -
qualcomm sdm630_firmware -
qualcomm sdm636_firmware -
qualcomm sdm660_firmware -
qualcomm sdm710_firmware -

CWE-119 https://www.qualcomm.com/company/product-security/bulletins https://source.android.com/security/bulletin/2018-07-01#qualcomm-closed-source-components https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-18171

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect