CVE-2017-15841

Summary

When HOST sends a Special command ID packet, Controller triggers a RAM Dump and FW reset in Snapdragon Mobile in version SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 820, SD 835, Snapdragon_High_Med_2016.

Affected Software

VendorProductVersion RangeStatus
Qualcomm Technologies, Inc.Snapdragon MobileSD 410/12affected
Qualcomm Technologies, Inc.Snapdragon MobileSD 425affected
Qualcomm Technologies, Inc.Snapdragon MobileSD 427affected
Qualcomm Technologies, Inc.Snapdragon MobileSD 430affected
Qualcomm Technologies, Inc.Snapdragon MobileSD 435affected
Qualcomm Technologies, Inc.Snapdragon MobileSD 450affected
Qualcomm Technologies, Inc.Snapdragon MobileSD 615/16/SD 415affected
Qualcomm Technologies, Inc.Snapdragon MobileSD 625affected
Qualcomm Technologies, Inc.Snapdragon MobileSD 650/52affected
Qualcomm Technologies, Inc.Snapdragon MobileSD 820affected
Qualcomm Technologies, Inc.Snapdragon MobileSD 835affected
Qualcomm Technologies, Inc.Snapdragon MobileSnapdragon_High_Med_2016affected

Weaknesses

  • CWE285: Improper Authorization

ADP Enrichment

CVE Program Container

Additional References

References