CVE-2017-18317

7.8HIGH

Key Information:

Vendor: Qualcomm
Status: Snapdragon Automobile, Snapdragon Mobile
Vendor: CVE Published:; 28 November 2018

Summary

Restrictions related to the modem (sim lock, sim kill) can be bypassed by manipulating the system to issue a deactivation flow sequence in Snapdragon Automobile, Snapdragon Mobile in versions MSM8996AU,SD 410/12,SD 820,SD 820A.

Affected Version(s)

Snapdragon Automobile, Snapdragon Mobile MSM8996AU,SD 410/12,SD 820,SD 820A

References

https://www.qualcomm.com/company/product-security/bulletins

x_refsource_CONFIRM

http://www.securityfocus.com/bid/105838

vdb-entryx_refsource_BID

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 28, 2018
Vulnerability Reserved
Jun 15, 2018