Vulnerabilities > CVE-2017-18301 - NULL Pointer Dereference vulnerability in Qualcomm products

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
qualcomm
CWE-476
NVD
Published: 2018-09-20
Updated: 2018-11-23

Summary

In Small Cell SoC and Snapdragon (Automobile, Mobile, Wear) in version FSM9055, FSM9955, MDM9607, MDM9640, MDM9650, MSM8909W, SD 425, SD 427, SD 430, SD 435, SD 450, SD 617, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SDM630, SDM636, SDM660, SDX20, Snapdragon_High_Med_2016, providing the NULL argument of ICE regulator while processing create key IOCTL results in system restart.

Vulnerable Configurations

Part Description Count
OS
Qualcomm
23
Hardware
Qualcomm
23

Common Weakness Enumeration (CWE)

References