CVE-2017-18298 Vulnerability Details
/
/
/
CVE-2017-18298 Metadata Quick Info
CVE Published: 23/10/2018 |
CVE Updated: 05/08/2024 |
CVE Year: 2017
Source: qualcomm |
Vendor: Qualcomm, Inc. |
Product: Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear
Status : PUBLISHED
CVE-2017-18298 Description
Lack of Input Validation in SDMX API can lead to NULL pointer access in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660 .
Metrics
CVSS Version: 3.1 |
Base Score: n/a
Vector: n/a
l➤ Exploitability Metrics:
Attack Vector (AV)*
Attack Complexity (AC)*
Privileges Required (PR)*
User Interaction (UI)*
Scope (S)*
l➤ Impact Metrics:
Confidentiality Impact (C)*
Integrity Impact (I)*
Availability Impact (A)*
Weakness Enumeration (CWE)
CWE-ID:
CWE Name: Null Pointer Dereference in Broadcast
Source: Qualcomm, Inc.
Common Attack Pattern Enumeration and Classification (CAPEC)
CAPEC-ID:
CAPEC Description: