Vulnerabilities > CVE-2014-10063 - 7PK - Security Features vulnerability in Qualcomm Mdm9625 Firmware and SD 800 Firmware

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

qualcomm

CWE-254

NVD

Published: 2018-04-18

Updated: 2018-05-09

Summary

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625 and SD 800, a fuse is not correctly blown on a secure device.

Vulnerable Configurations

Part	Description	Count
OS	Qualcomm Qualcomm Mdm9625 Firmware - Qualcomm SD 800 Firmware -	2
Hardware	Qualcomm Qualcomm Mdm9625 - Qualcomm SD 800 -	2

Common Weakness Enumeration (CWE)

CWE-254 - 7PK - Security Features

References

https://source.android.com/security/bulletin/2018-04-01
http://www.securityfocus.com/bid/103671