CVSS: 7.8EPSS: 0%CPEs: 64EXPL: 0CVE-2017-18320
https://notcve.org/view.php?id=CVE-2017-18320
03 Jan 2019 — QSEE unload attempt on a 3rd party TEE without previously loading results in a data abort in snapdragon automobile and snapdragon mobile in versions MSM8996AU, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 810, SD 820, SD 820A, SD 835, SDA660, SDM439, SDM630, SDM660, SDX24, Snapdragon_High_Med_2016, SXR1130. Intento de descarga QSEE en un TEE de terceros sin cargar los resultados previamente en un "data a... • http://www.securityfocus.com/bid/106128 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 78EXPL: 0CVE-2017-18330
https://notcve.org/view.php?id=CVE-2017-18330
03 Jan 2019 — Buffer overflow in AES-CCM and AES-GCM encryption via initialization vector in snapdragon automobile, snapdragon mobile and snapdragon wear in versions IPQ8074, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SDA660, SDM439, SDM630, SDM660, SDX24, Snapdragon_High_Med_2016. Desbordamiento de búfer en el cifr... • http://www.securityfocus.com/bid/106128 •
CVSS: 5.5EPSS: 0%CPEs: 74EXPL: 0CVE-2017-11004
https://notcve.org/view.php?id=CVE-2017-11004
03 Jan 2019 — A non-secure user may be able to access certain registers in snapdragon automobile, snapdragon mobile and snapdragon wear in versions IPQ8074, MDM9206, MDM9607, MDM9635M, MDM9650, MDM9655, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SDA660, SDM439, SDM630, SDM660, SDX24, Snapdragon_High_Med_2016. Un usuario inseguro podría acceder a determinados registros en snapdrag... • http://www.securityfocus.com/bid/106128 •