Sign-up

ID

VAR-201810-0040


CVE

CVE-2017-18305


TITLE

Snapdragon Mobile and Snapdragon Wear Vulnerabilities in access control

Trust: 0.8

sources: JVNDB: JVNDB-2017-014309

DESCRIPTION

XBL sec mem dump system call allows complete control of EL3 by unlocking all XPUs if enable fuse is not blown in Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 835. Snapdragon Mobile and Snapdragon Wear Contains an access control vulnerability.Information is acquired, information is falsified, and denial of service (DoS) May be in a state. Qualcomm MDM9206, etc. are the central processing unit (CPU) products of Qualcomm (Qualcomm) applied to different platforms. An input validation vulnerability exists in the Core in several Qualcomm Snapdragon products. An attacker could exploit this vulnerability to take full control of EL3. The following products (used in mobile devices and watches) are affected: Qualcomm MDM9206; MDM9607; MDM9650; SD 210; SD 212; SD 205; SD 835

Trust: 1.8

sources: NVD: CVE-2017-18305 // JVNDB: JVNDB-2017-014309 // VULHUB: VHN-109414 // VULMON: CVE-2017-18305

AFFECTED PRODUCTS

vendor:qualcommmodel:sd 205scope:eqversion: -

Trust: 1.6

vendor:qualcommmodel:sd 210scope:eqversion: -

Trust: 1.6

vendor:qualcommmodel:sd 212scope:eqversion: -

Trust: 1.6

vendor:qualcommmodel:sd 835scope:eqversion: -

Trust: 1.6

vendor:qualcommmodel:mdm9650scope:eqversion: -

Trust: 1.6

vendor:qualcommmodel:mdm9206scope:eqversion: -

Trust: 1.6

vendor:qualcommmodel:mdm9607scope:eqversion: -

Trust: 1.6

vendor:qualcommmodel:mdm9206scope: - version: -

Trust: 0.8

vendor:qualcommmodel:mdm9607scope: - version: -

Trust: 0.8

vendor:qualcommmodel:mdm9650scope: - version: -

Trust: 0.8

vendor:qualcommmodel:sd 205scope: - version: -

Trust: 0.8

vendor:qualcommmodel:sd 210scope: - version: -

Trust: 0.8

vendor:qualcommmodel:sd 212scope: - version: -

Trust: 0.8

vendor:qualcommmodel:sd 835scope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2017-014309 // CNNVD: CNNVD-201810-1164 // NVD: CVE-2017-18305

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-18305
value: HIGH

Trust: 1.0

NVD: CVE-2017-18305
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201810-1164
value: HIGH

Trust: 0.6

VULHUB: VHN-109414
value: MEDIUM

Trust: 0.1

VULMON: CVE-2017-18305
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2017-18305
severity: MEDIUM
baseScore: 6.9
vectorString: AV:L/AC:M/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.4
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.9

VULHUB: VHN-109414
severity: MEDIUM
baseScore: 6.9
vectorString: AV:L/AC:M/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.4
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-18305
baseSeverity: HIGH
baseScore: 7.0
vectorString: CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: HIGH
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.0
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-109414 // VULMON: CVE-2017-18305 // JVNDB: JVNDB-2017-014309 // CNNVD: CNNVD-201810-1164 // NVD: CVE-2017-18305

PROBLEMTYPE DATA

problemtype:NVD-CWE-noinfo

Trust: 1.0

problemtype:CWE-284

Trust: 0.9

sources: VULHUB: VHN-109414 // JVNDB: JVNDB-2017-014309 // NVD: CVE-2017-18305

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201810-1164

TYPE

input validation

Trust: 0.6

sources: CNNVD: CNNVD-201810-1164

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-014309

PATCH
title:October 2018 Qualcomm Technologies, Inc. Security Bulletinurl:https://www.qualcomm.com/company/product-security/bulletins
Trust: 0.8
title:Multiple Qualcomm Snapdragon Fixes for product input validation vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=86262
Trust: 0.6
title:Android Security Bulletins: Android Security Bulletin—August 2018url:https://vulmon.com/vendoradvisory?qidtp=android_security_bulletins&qid=746dc14fcd3f5e139648cfdc9d9039a9
Trust: 0.1
title:SamsungReleaseNotesurl:https://github.com/samreleasenotes/SamsungReleaseNotes 
Trust: 0.1
sources:
            
            
            VULMON: CVE-2017-18305 // 
            
            
            
            JVNDB: JVNDB-2017-014309 // 
            
            
            
            CNNVD: CNNVD-201810-1164

EXTERNAL IDS
db:NVDid:CVE-2017-18305
Trust: 2.6
db:SECTRACKid:1041432
Trust: 1.8
db:JVNDBid:JVNDB-2017-014309
Trust: 0.8
db:CNNVDid:CNNVD-201810-1164
Trust: 0.7
db:VULHUBid:VHN-109414
Trust: 0.1
db:VULMONid:CVE-2017-18305
Trust: 0.1
sources:
            
            
            VULHUB: VHN-109414 // 
            
            
            
            VULMON: CVE-2017-18305 // 
            
            
            
            JVNDB: JVNDB-2017-014309 // 
            
            
            
            CNNVD: CNNVD-201810-1164 // 
            
            
            
            NVD: CVE-2017-18305

REFERENCES
url:https://source.android.com/security/bulletin/2018-08-01#qualcomm-closed-source-components
Trust: 1.8
url:https://www.qualcomm.com/company/product-security/bulletins
Trust: 1.8
url:http://www.securitytracker.com/id/1041432
Trust: 1.8
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-18305
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-18305
Trust: 0.8
url:https://cwe.mitre.org/data/definitions/.html
Trust: 0.1
url:https://nvd.nist.gov
Trust: 0.1
url:https://source.android.com/security/bulletin/2018-08-01.html
Trust: 0.1
url:https://github.com/samreleasenotes/samsungreleasenotes
Trust: 0.1
sources:
            
            
            VULHUB: VHN-109414 // 
            
            
            
            VULMON: CVE-2017-18305 // 
            
            
            
            JVNDB: JVNDB-2017-014309 // 
            
            
            
            CNNVD: CNNVD-201810-1164 // 
            
            
            
            NVD: CVE-2017-18305

SOURCES
db:VULHUBid:VHN-109414
db:VULMONid:CVE-2017-18305
db:JVNDBid:JVNDB-2017-014309
db:CNNVDid:CNNVD-201810-1164
db:NVDid:CVE-2017-18305

LAST UPDATE DATE
2024-11-23T21:25:33.482000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-109414date:2019-10-03T00:00:00
db:VULMONid:CVE-2017-18305date:2019-10-03T00:00:00
db:JVNDBid:JVNDB-2017-014309date:2019-01-16T00:00:00
db:CNNVDid:CNNVD-201810-1164date:2019-10-23T00:00:00
db:NVDid:CVE-2017-18305date:2024-11-21T03:19:49.173

SOURCES RELEASE DATE
db:VULHUBid:VHN-109414date:2018-10-23T00:00:00
db:VULMONid:CVE-2017-18305date:2018-10-23T00:00:00
db:JVNDBid:JVNDB-2017-014309date:2019-01-16T00:00:00
db:CNNVDid:CNNVD-201810-1164date:2018-10-24T00:00:00
db:NVDid:CVE-2017-18305date:2018-10-23T13:29:02.557