CVE-2017-18129
Last modified
CVE-2017-18129 is a vulnerability of currently unknown severity. In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9206, MDM9607, SD 845, MSM8996, MSM8998, it is possible for IPA (internet protocol accelerator) channels owned by one security domain to be controlled from other domains.. EPSS estimates a 1.32% chance of exploitation in the next 30 days.
Description
In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9206, MDM9607, SD 845, MSM8996, MSM8998, it is possible for IPA (internet protocol accelerator) channels owned by one security domain to be controlled from other domains.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Mdm9206 Firmware | All versions |
| Qualcomm | Mdm9607 Firmware | All versions |
| Qualcomm | Msm8996 Firmware | All versions |
| Qualcomm | Msm8998 Firmware | All versions |
| Qualcomm | Sd 845 Firmware | All versions |
References
- http://www.securityfocus.com/bid/103671Third Party Advisory, VDB Entry
- https://source.android.com/security/bulletin/2018-04-01Vendor Advisory
- http://www.securityfocus.com/bid/103671Third Party Advisory, VDB Entry
- https://source.android.com/security/bulletin/2018-04-01Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-18129?
How severe is CVE-2017-18129?
How do I fix CVE-2017-18129?
Are you affected by CVE-2017-18129?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST