Vulnerability Description
In Small Cell SoC and Snapdragon (Automobile, Mobile, Wear) in version FSM9055, FSM9955, MDM9607, MDM9640, MDM9650, MSM8909W, SD 425, SD 427, SD 430, SD 435, SD 450, SD 617, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SDM630, SDM636, SDM660, SDX20, Snapdragon_High_Med_2016, providing the NULL argument of ICE regulator while processing create key IOCTL results in system restart.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Fsm9055 Firmware | - |
| Qualcomm | Fsm9055 | - |
| Qualcomm | Fsm9955 Firmware | - |
| Qualcomm | Fsm9955 | - |
| Qualcomm | Mdm9607 Firmware | - |
| Qualcomm | Mdm9607 | - |
| Qualcomm | Mdm9640 Firmware | - |
| Qualcomm | Mdm9640 | - |
| Qualcomm | Mdm9650 Firmware | - |
| Qualcomm | Mdm9650 | - |
| Qualcomm | Msm8909W Firmware | - |
| Qualcomm | Msm8909W | - |
| Qualcomm | Sd425 Firmware | - |
| Qualcomm | Sd425 | - |
| Qualcomm | Sd427 Firmware | - |
| Qualcomm | Sd427 | - |
| Qualcomm | Sd430 Firmware | - |
| Qualcomm | Sd430 | - |
| Qualcomm | Sd435 Firmware | - |
| Qualcomm | Sd435 | - |
Related Weaknesses (CWE)
References
- http://www.securitytracker.com/id/1041432Third Party AdvisoryVDB Entry
- https://source.android.com/security/bulletin/2018-08-01#qualcomm-closed-source-cVendor Advisory
- https://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
- http://www.securitytracker.com/id/1041432Third Party AdvisoryVDB Entry
- https://source.android.com/security/bulletin/2018-08-01#qualcomm-closed-source-cVendor Advisory
- https://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
FAQ
What is CVE-2017-18301?
CVE-2017-18301 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In Small Cell SoC and Snapdragon (Automobile, Mobile, Wear) in version FSM9055, FSM9955, MDM9607, MDM9640, MDM9650, MSM8909W, SD 425, SD 427, SD 430, SD 435, SD 450, SD 617, SD 625, SD 650/52, SD 820,...
How severe is CVE-2017-18301?
CVE-2017-18301 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-18301?
Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Fsm9055 Firmware, Qualcomm Fsm9055, Qualcomm Fsm9955 Firmware, Qualcomm Fsm9955, Qualcomm Mdm9607 Firmware.