CVE-2017-18160 Vulnerability Details

  /     /     /  

CVE-2017-18160 Metadata Quick Info

CVE Published: 18/01/2019 | CVE Updated: 05/08/2024 | CVE Year: 2017
Source: qualcomm | Vendor: Qualcomm, Inc. | Product: Snapdragon Mobile, Snapdragon Wear
Status : PUBLISHED

---

CVE-2017-18160 Description

AGPS session failure in GNSS module due to cyphersuites are hardcoded and needed manual update everytime in snapdragon mobile and snapdragon wear in versions MDM9635M, MDM9645, MDM9650, MDM9655, MSM8909W, SD 835, SD 845, SD 850

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name: Cryptographic Issues in GPS
Source: Qualcomm, Inc.

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).