CVE-2017-18308

EUVD-2017-9434
Modem segments are unlocked after authentication, leaving modem segments open to all in Snapdragon Mobile, Snapdragon Wear in version MDM9607, MSM8909W, SD 210/SD 212/SD 205, SD 425, SD 430
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 42%
Affected Products (NVD)
VendorProductVersion
qualcommmdm9607_firmware
-
qualcommmsm8909w_firmware
-
qualcommsd_210_firmware
-
qualcommsd_212_firmware
-
qualcommsd_205_firmware
-
qualcommsd_425_firmware
-
qualcommsd_430_firmware
-
𝑥
= Vulnerable software versions
References
http://www.securitytracker.com/id/1041432
https://www.qualcomm.com/company/product-security/bulletins
http://www.securitytracker.com/id/1041432
https://www.qualcomm.com/company/product-security/bulletins