CVE-2018-11970
04.04.2019, 15:29
TZ App dynamic allocations not protected from XBL loader in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9206, MDM9607, MDM9650, MDM9655, QCS605, SD 410/12, SD 636, SD 712 / SD 710 / SD 670, SD 845 / SD 850, SD 8CX, SDA660, SDM630, SDM660, SXR1130Enginsight
| Vendor | Product | Version |
|---|---|---|
| qualcomm | mdm9206_firmware | - |
| qualcomm | mdm9607_firmware | - |
| qualcomm | mdm9650_firmware | - |
| qualcomm | mdm9655_firmware | - |
| qualcomm | qcs605_firmware | - |
| qualcomm | sd_410_firmware | - |
| qualcomm | sd_412_firmware | - |
| qualcomm | sd_636_firmware | - |
| qualcomm | sd_712_firmware | - |
| qualcomm | sd_710_firmware | - |
| qualcomm | sd_670_firmware | - |
| qualcomm | sd_845_firmware | - |
| qualcomm | sd_850_firmware | - |
| qualcomm | sd_8cx_firmware | - |
| qualcomm | sda660_firmware | - |
| qualcomm | sdm630_firmware | - |
| qualcomm | sdm660_firmware | - |
| qualcomm | sxr1130_firmware | - |
𝑥
= Vulnerable software versions