CVSS: 10.0EPSS: 0%CPEs: 6EXPL: 0CVE-2017-18132
https://notcve.org/view.php?id=CVE-2017-18132
In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9206, MDM9607, MDM8996, an out-of-bounds access can potentially occur in tz_assign(). En Android, antes del nivel de parche de seguridad del 2018-04-05 en Qualcomm Snapdragon Automobile y Snapdragon Mobile MDM9206, MDM9607 y MDM8996 puede ocurrir un acceso fuera de límites en tz_assign(). • http://www.securityfocus.com/bid/103671 https://source.android.com/security/bulletin/2018-04-01 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 0%CPEs: 10EXPL: 0CVE-2017-18129
https://notcve.org/view.php?id=CVE-2017-18129
In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9206, MDM9607, SD 845, MSM8996, MSM8998, it is possible for IPA (internet protocol accelerator) channels owned by one security domain to be controlled from other domains. En Android, antes del nivel de parche de seguridad del 2018-04-05 en Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9206, MDM9607, SD 845, MSM8996 y MSM8998, es posible que los canales IPA (Internet Protocol Accelerator) propiedad de un dominio de seguridad sean controlados desde otros dominios. • http://www.securityfocus.com/bid/103671 https://source.android.com/security/bulletin/2018-04-01 • CWE-668: Exposure of Resource to Wrong Sphere •