CVE-2019-2278
25.07.2019, 17:15
User keystore signature is ignored in boot and can lead to bypass boot image signature verification in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile in MDM9607, MDM9640, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 845 / SD 850, SDM660Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| qualcomm | mdm9607_firmware | - |
| qualcomm | mdm9640_firmware | - |
| qualcomm | sd_425_firmware | - |
| qualcomm | sd_427_firmware | - |
| qualcomm | sd_430_firmware | - |
| qualcomm | sd_435_firmware | - |
| qualcomm | sd_450_firmware | - |
| qualcomm | sd_625_firmware | - |
| qualcomm | sd_636_firmware | - |
| qualcomm | sd_712_firmware | - |
| qualcomm | sd_710_firmware | - |
| qualcomm | sd_670_firmware | - |
| qualcomm | sd_845_firmware | - |
| qualcomm | sd_850_firmware | - |
| qualcomm | sdm660_firmware | - |
𝑥
= Vulnerable software versions
Common Weakness Enumeration