CVE-2018-11951
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
26/10/2018
Last modified:
03/10/2019
Description
Improper access control in core module lead XBL_LOADER performs the ZI region clear for QTEE instead of XBL_SEC in Snapdragon Mobile in version SD 845, SD 850.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Base Score 2.0
4.90
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:o:qualcomm:sd_845_firmware:-:*:*:*:*:*:*:* | ||
cpe:2.3:h:qualcomm:sd_845:-:*:*:*:*:*:*:* | ||
cpe:2.3:o:qualcomm:sd_850_firmware:-:*:*:*:*:*:*:* | ||
cpe:2.3:h:qualcomm:sd_850:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page