Lucene search

[email protected]NVD:CVE-2017-18160

HistoryJan 18, 2019 - 10:29 p.m.

CVE-2017-18160

2019-01-1822:29:00

CWE-310

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.4

Confidence

High

EPSS

0.001

Percentile

48.3%

JSON

AGPS session failure in GNSS module due to cyphersuites are hardcoded and needed manual update everytime in snapdragon mobile and snapdragon wear in versions MDM9635M, MDM9645, MDM9650, MDM9655, MSM8909W, SD 835, SD 845, SD 850

Affected configurations

Nvd

Node

qualcommmdm9635m_firmwareMatch-

AND

qualcommmdm9635mMatch-

Node

qualcommmdm9645_firmwareMatch-

AND

qualcommmdm9645Match-

Node

qualcommmdm9650_firmwareMatch-

AND

qualcommmdm9650Match-

Node

qualcommmdm9655_firmwareMatch-

AND

qualcommmdm9655Match-

Node

qualcommmsm8909w_firmwareMatch-

AND

qualcommmsm8909wMatch-

Node

qualcommsd_835_firmwareMatch-

AND

qualcommsd_835Match-

Node

qualcommsd_845_firmwareMatch-

AND

qualcommsd_845Match-

Node

qualcommsd_850_firmwareMatch-

AND

qualcommsd_850Match-

VendorProductVersionCPE
qualcommmdm9635m_firmware-cpe:2.3:o:qualcomm:mdm9635m_firmware:-:*:*:*:*:*:*:*
qualcommmdm9635m-cpe:2.3:h:qualcomm:mdm9635m:-:*:*:*:*:*:*:*
qualcommmdm9645_firmware-cpe:2.3:o:qualcomm:mdm9645_firmware:-:*:*:*:*:*:*:*
qualcommmdm9645-cpe:2.3:h:qualcomm:mdm9645:-:*:*:*:*:*:*:*
qualcommmdm9650_firmware-cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*
qualcommmdm9650-cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*
qualcommmdm9655_firmware-cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*
qualcommmdm9655-cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*
qualcommmsm8909w_firmware-cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*
qualcommmsm8909w-cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
qualcomm	mdm9635m_firmware	-	cpe:2.3:o:qualcomm:mdm9635m_firmware:-:::::::*
qualcomm	mdm9635m	-	cpe:2.3:h:qualcomm:mdm9635m:-:::::::*
qualcomm	mdm9645_firmware	-	cpe:2.3:o:qualcomm:mdm9645_firmware:-:::::::*
qualcomm	mdm9645	-	cpe:2.3:h:qualcomm:mdm9645:-:::::::*
qualcomm	mdm9650_firmware	-	cpe:2.3:o:qualcomm:mdm9650_firmware:-:::::::*
qualcomm	mdm9650	-	cpe:2.3:h:qualcomm:mdm9650:-:::::::*
qualcomm	mdm9655_firmware	-	cpe:2.3:o:qualcomm:mdm9655_firmware:-:::::::*
qualcomm	mdm9655	-	cpe:2.3:h:qualcomm:mdm9655:-:::::::*
qualcomm	msm8909w_firmware	-	cpe:2.3:o:qualcomm:msm8909w_firmware:-:::::::*
qualcomm	msm8909w	-	cpe:2.3:h:qualcomm:msm8909w:-:::::::*

Rows per page:

1-10 of 161

References

www.securityfocus.com/bid/106128

www.qualcomm.com/company/product-security/bulletins

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.4

Confidence

High

EPSS

0.001

Percentile

48.3%

JSON

Related for NVD:CVE-2017-18160

cve1 cvelist1 prion1