CVE-2018-11994

SMMU secure camera logic allows secure camera controllers to access HLOS memory during session in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660, SDA845, SDX24, SXR1130.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
qualcommmdm9206_firmware
-
qualcommmdm9607_firmware
-
qualcommmdm9650_firmware
-
qualcommmsm8996au_firmware
-
qualcommsd_210_firmware
-
qualcommsd_212_firmware
-
qualcommsd_205_firmware
-
qualcommsd_425_firmware
-
qualcommsd_430_firmware
-
qualcommsd_450_firmware
-
qualcommsd_625_firmware
-
qualcommsd_820_firmware
-
qualcommsd_820a_firmware
-
qualcommsd_835_firmware
-
qualcommsd_845_firmware
-
qualcommsd_850_firmware
-
qualcommsda660_firmware
-
qualcommsda845_firmware
-
qualcommsdx24_firmware
-
qualcommsxr1130_firmware
-
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/105838
https://www.qualcomm.com/company/product-security/bulletins
http://www.securityfocus.com/bid/105838
https://www.qualcomm.com/company/product-security/bulletins