← back
CVE-2017-18292

CVE-2017-18292

EPSS 0.3%
Secure app running in non secure space can restart TZ by calling Widevine app API repeatedly in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 810, SD 820, SD 820A.
Affected products
Qualcomm, Inc. · Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://source.android.com/security/bulletin/2018-08-01#qualcomm-closed-source-componentshttps://www.qualcomm.com/company/product-security/bulletinshttp://www.securitytracker.com/id/1041432