Lucene search

[email protected]NVD:CVE-2018-11828

HistoryOct 26, 2018 - 1:29 p.m.

CVE-2018-11828

2018-10-2613:29:01

CWE-400

[email protected]

web.nvd.nist.gov

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

38.4%

JSON

When FW tries to get random mac address generated from new SW RNG and ADC values read are constant then DUT get struck in loop while trying to get random ADC samples in Snapdragon Mobile in version SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 650/52

Affected configurations

Nvd

Node

qualcommsd_210_firmwareMatch-

AND

qualcommsd_210Match-

Node

qualcommsd_212_firmwareMatch-

AND

qualcommsd_212Match-

Node

qualcommsd_205_firmwareMatch-

AND

qualcommsd_205Match-

Node

qualcommsd_425_firmwareMatch-

AND

qualcommsd_425Match-

Node

qualcommsd_430_firmwareMatch-

AND

qualcommsd_430Match-

Node

qualcommsd_450_firmwareMatch-

AND

qualcommsd_450Match-

Node

qualcommsd_625_firmwareMatch-

AND

qualcommsd_625Match-

Node

qualcommsd_650_firmwareMatch-

AND

qualcommsd_650Match-

Node

qualcommsd_652_firmwareMatch-

AND

qualcommsd_652Match-

VendorProductVersionCPE
qualcommsd_210_firmware-cpe:2.3:o:qualcomm:sd_210_firmware:-:*:*:*:*:*:*:*
qualcommsd_210-cpe:2.3:h:qualcomm:sd_210:-:*:*:*:*:*:*:*
qualcommsd_212_firmware-cpe:2.3:o:qualcomm:sd_212_firmware:-:*:*:*:*:*:*:*
qualcommsd_212-cpe:2.3:h:qualcomm:sd_212:-:*:*:*:*:*:*:*
qualcommsd_205_firmware-cpe:2.3:o:qualcomm:sd_205_firmware:-:*:*:*:*:*:*:*
qualcommsd_205-cpe:2.3:h:qualcomm:sd_205:-:*:*:*:*:*:*:*
qualcommsd_425_firmware-cpe:2.3:o:qualcomm:sd_425_firmware:-:*:*:*:*:*:*:*
qualcommsd_425-cpe:2.3:h:qualcomm:sd_425:-:*:*:*:*:*:*:*
qualcommsd_430_firmware-cpe:2.3:o:qualcomm:sd_430_firmware:-:*:*:*:*:*:*:*
qualcommsd_430-cpe:2.3:h:qualcomm:sd_430:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
qualcomm	sd_210_firmware	-	cpe:2.3:o:qualcomm:sd_210_firmware:-:::::::*
qualcomm	sd_210	-	cpe:2.3:h:qualcomm:sd_210:-:::::::*
qualcomm	sd_212_firmware	-	cpe:2.3:o:qualcomm:sd_212_firmware:-:::::::*
qualcomm	sd_212	-	cpe:2.3:h:qualcomm:sd_212:-:::::::*
qualcomm	sd_205_firmware	-	cpe:2.3:o:qualcomm:sd_205_firmware:-:::::::*
qualcomm	sd_205	-	cpe:2.3:h:qualcomm:sd_205:-:::::::*
qualcomm	sd_425_firmware	-	cpe:2.3:o:qualcomm:sd_425_firmware:-:::::::*
qualcomm	sd_425	-	cpe:2.3:h:qualcomm:sd_425:-:::::::*
qualcomm	sd_430_firmware	-	cpe:2.3:o:qualcomm:sd_430_firmware:-:::::::*
qualcomm	sd_430	-	cpe:2.3:h:qualcomm:sd_430:-:::::::*

Rows per page:

1-10 of 181

References

www.securityfocus.com/bid/107681

www.qualcomm.com/company/product-security/bulletins

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

38.4%

JSON

Related for NVD:CVE-2018-11828

prion1 cvelist1 cve1