CVE-2017-18131

Summary

In QTEE, an incorrect fuse value can be blown in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 820, SD 820A, SD 835, SD 845, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, Snapdragon_High_Med_2016.

Affected Software

VendorProductVersion RangeStatus
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearMDM9206affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearMDM9607affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearMSM8996AUaffected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 210/SD 212/SD 205affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 410/12affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 425affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 427affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 430affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 435affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 450affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 615/16/SD 415affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 625affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 820affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 820Aaffected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 835affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSD 845affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSDM429affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSDM439affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSDM630affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSDM632affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSDM636affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSDM660affected
Qualcomm Technologies Inc.Snapdragon Automobile, Snapdragon Mobile, Snapdragon WearSnapdragon_High_Med_2016affected

Weaknesses

  • CWE823: Use of Out-of-range Pointer Offset

ADP Enrichment

CVE Program Container

Additional References

References