In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9206, MDM9607, SD 845, MSM8996, MSM8998, it is possible for IPA (internet protocol accelerator) channels owned by one security domain to be controlled from other domains.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/103671 | Third Party Advisory VDB Entry |
https://source.android.com/security/bulletin/2018-04-01 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
History
No history.
Information
Published : 2018-04-11 15:29
Updated : 2024-02-28 16:25
NVD link : CVE-2017-18129
Mitre link : CVE-2017-18129
CVE.ORG link : CVE-2017-18129
JSON object : View
Products Affected
qualcomm
- mdm9607
- msm8996_firmware
- sd_845
- mdm9607_firmware
- sd_845_firmware
- mdm9206
- msm8996
- msm8998_firmware
- msm8998
- mdm9206_firmware
CWE
CWE-668
Exposure of Resource to Wrong Sphere