CVE-2018-11967
EUVD-2018-395924.05.2019, 17:29
Signature verification of the skel library could potentially be disabled as the memory region on the remote subsystem in which the library is loaded is allocated from userspace currently in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCS605, Qualcomm 215, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| qualcomm | mdm9150_firmware | - |
| qualcomm | mdm9206_firmware | - |
| qualcomm | mdm9607_firmware | - |
| qualcomm | mdm9640_firmware | - |
| qualcomm | mdm9650_firmware | - |
| qualcomm | msm8909w_firmware | - |
| qualcomm | msm8996au_firmware | - |
| qualcomm | qcs605_firmware | - |
| qualcomm | qm215_firmware | - |
| qualcomm | sd_425_firmware | - |
| qualcomm | sd_427_firmware | - |
| qualcomm | sd_430_firmware | - |
| qualcomm | sd_435_firmware | - |
| qualcomm | sd_439_firmware | - |
| qualcomm | sd_429_firmware | - |
| qualcomm | sd_450_firmware | - |
| qualcomm | sd_625_firmware | - |
| qualcomm | sd_632_firmware | - |
| qualcomm | sd_636_firmware | - |
| qualcomm | sd_650_firmware | - |
| qualcomm | sd_652_firmware | - |
| qualcomm | sd_712_firmware | - |
| qualcomm | sd_710_firmware | - |
| qualcomm | sd_670_firmware | - |
| qualcomm | sd_820_firmware | - |
| qualcomm | sd_820a_firmware | - |
| qualcomm | sd_835_firmware | - |
| qualcomm | sd_845_firmware | - |
| qualcomm | sd_850_firmware | - |
| qualcomm | sd_855_firmware | - |
| qualcomm | sda660_firmware | - |
| qualcomm | sdm439_firmware | - |
| qualcomm | sdm630_firmware | - |
| qualcomm | sdm660_firmware | - |
| qualcomm | sdx20_firmware | - |
| qualcomm | sdx24_firmware | - |
𝑥
= Vulnerable software versions