Vulnerabilities > CVE-2018-11257 - Unspecified vulnerability in Qualcomm products

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

qualcomm

NVD

Published: 2018-07-06

Updated: 2019-10-03

Summary

Permissions, Privileges, and Access Controls in TA in Snapdragon Mobile has an options that allows RPMB erase for secure devices in versions SD 210/SD 212/SD 205, SD 845, SD 850.

Vulnerable Configurations

Part	Description	Count
OS	Qualcomm Qualcomm SD 210 Firmware - Qualcomm SD 212 Firmware - Qualcomm SD 205 Firmware - Qualcomm SD 845 Firmware - Qualcomm SD 850 Firmware -	5
Hardware	Qualcomm Qualcomm SD 210 - Qualcomm SD 212 - Qualcomm SD 205 - Qualcomm SD 845 - Qualcomm SD 850 -	5

References

https://www.qualcomm.com/company/product-security/bulletins