CVE-2017-18312
CVE-2017-18312
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
23 Oct 2018Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
While accessing SafeSwitch services, third party can manipulate a given device and perform unauthorized operation due to lack of checking of same state transitions in Snapdragon Automobile, Snapdragon Mobile in version MSM8996AU, SD 410/12, SD 617, SD 650/52, SD 810, SD 820, SD 820A
Affected products
Qualcomm, Inc. · Snapdragon Automobile, Snapdragon Mobile