CVE-2017-18312

Summary

While accessing SafeSwitch services, third party can manipulate a given device and perform unauthorized operation due to lack of checking of same state transitions in Snapdragon Automobile, Snapdragon Mobile in version MSM8996AU, SD 410/12, SD 617, SD 650/52, SD 810, SD 820, SD 820A

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.Snapdragon Automobile, Snapdragon MobileMSM8996AU, SD 410/12, SD 617, SD 650/52, SD 810, SD 820, SD 820Aaffected

Weaknesses

  • Improper Authorization in SafeSwitch Services

ADP Enrichment

CVE Program Container

Additional References

References