EUVD-2018-3839

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Malicious TA can corrupt QSEE kernel memory, affecting multiple Snapdragon platforms and devices.

Reporter	Title	Published	Views	Family All 7
android	CVE-2018-11847	1 Jan 201900:00	–	android
CNVD	Multiple Qualcomm Product Input Validation Vulnerabilities (CNVD-2019-01714)	10 Jan 201900:00	–	cnvd
CVE	CVE-2018-11847	11 Feb 201915:00	–	cve
Cvelist	CVE-2018-11847	11 Feb 201915:00	–	cvelist
NVD	CVE-2018-11847	11 Feb 201915:29	–	nvd
Prion	Code injection	11 Feb 201915:29	–	prion
ThreatPost	Google Patches Critical .PNG Image Bug	5 Feb 201916:40	–	threatpost

[
  {
    "enisaIdVendor": [
      {
        "id": "faa1c04c-5444-379e-bbfc-3159488d4183",
        "vendor": {
          "name": "Qualcomm, Inc."
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "433a253a-0c8f-30de-9a23-4018d26d4572",
        "product": {
          "name": "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking"
        },
        "product_version": "IPQ8074, MDM9206, MDM9607, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCA8081, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 650/52, SD 820, SD 820A, SD 835, SD 8CX, SDM439, Snapdragon_High_Med_2016"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/106475
qualcomm	www.qualcomm.com/company/product-security/bulletins
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

7.7High risk

Vulners AI Score7.7

CVSS 37.8

CVSS 27.2

EPSS0.00033