Vulnerabilities > CVE-2018-13903 - NULL Pointer Dereference vulnerability in Qualcomm products

CVSS 8.1 - HIGH

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

high complexity

qualcomm

CWE-476

NVD

Published: 2020-09-08

Updated: 2020-09-11

Summary

u'Error in UE due to race condition in EPCO handling' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, MDM9205, MDM9206, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, SDM450, SM8150

Vulnerable Configurations

Part	Description	Count
OS	Qualcomm Qualcomm Apq8053 Firmware - Qualcomm Mdm9205 Firmware - Qualcomm Mdm9206 Firmware - Qualcomm Msm8909W Firmware - Qualcomm Msm8917 Firmware - Qualcomm Msm8920 Firmware - Qualcomm Msm8937 Firmware - Qualcomm Msm8940 Firmware - Qualcomm Msm8953 Firmware - Qualcomm Sdm450 Firmware - Qualcomm Sm8150 Firmware -	11
Hardware	Qualcomm Qualcomm Apq8053 - Qualcomm Mdm9205 - Qualcomm Mdm9206 - Qualcomm Msm8909W - Qualcomm Msm8917 - Qualcomm Msm8920 - Qualcomm Msm8937 - Qualcomm Msm8940 - Qualcomm Msm8953 - Qualcomm Sdm450 - Qualcomm Sm8150 -	11

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References