CVE-2018-11259
CVE-2018-11259
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
06 jul 2018Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Due to Improper Access Control of NAND-based EFS in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, From fastboot on a NAND-based device, the EFS partition can be erased. Apps processor then has non-secure world full read/write access to the partition until the modem boots and configures the EFS partition addresses in its MPU partition.
Productos afectados
Qualcomm, Inc. · Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear