{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-02T11:24:02.458","vulnerabilities":[{"cve":{"id":"CVE-2017-18312","sourceIdentifier":"product-security@qualcomm.com","published":"2018-10-23T13:29:02.697","lastModified":"2024-11-21T03:19:49.883","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"While accessing SafeSwitch services, third party can manipulate a given device and perform unauthorized operation due to lack of checking of same state transitions in Snapdragon Automobile, Snapdragon Mobile in version MSM8996AU, SD 410/12, SD 617, SD 650/52, SD 810, SD 820, SD 820A"},{"lang":"es","value":"Al acceder a los servicios SafeSwitch, los terceros pueden manipular un dispositivo determinado y realizar operaciones no autorizadas debido a la falta de comprobaciones de algunas transiciones del mismo estado en Snapdragon Automobile y Snapdragon Mobile en versiones MSM8996AU, SD 410/12, SD 617, SD 650/52, SD 810, SD 820 y SD 820A"}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:C/I:C/A:C","baseScore":7.2,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":3.9,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"8CA1E7B0-782B-4757-B118-802943798984"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*","matchCriteriaId":"95CB08EC-AE12-4A54-AA3C-998F01FC8763"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:sd_410_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"F683C42D-A310-4369-9689-3DBC9288591E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:sd_410:-:*:*:*:*:*:*:*","matchCriteriaId":"0EADE10A-0F63-4149-8F03-030673D6D7CE"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:sd_412_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"A78C9449-5EB0-459B-AA72-EFF00592C30A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:sd_412:-:*:*:*:*:*:*:*","matchCriteriaId":"2D583172-F1F1-4DF8-99CE-B94A84D14CCD"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:sd_617_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"D27A1760-8D1B-4172-B6CE-65C72332F103"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:sd_617:-:*:*:*:*:*:*:*","matchCriteriaId":"CC5F96F1-D3FB-482B-A3C8-57BA4DE86D5E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:sd_650_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"BC1650DB-FDF8-4BE5-9437-8ADA11A07116"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:sd_650:-:*:*:*:*:*:*:*","matchCriteriaId":"B51DD51F-4BDE-497B-89E5-551D10CF3442"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:sd_652_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"0752054B-2C29-4490-ADC8-29F82BAA17E6"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:sd_652:-:*:*:*:*:*:*:*","matchCriteriaId":"005038B5-BCB7-4A23-8562-ACEF6E156C1F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:sd_810_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"95B4B4D4-0357-4E1D-9B72-635106D632CF"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:sd_810:-:*:*:*:*:*:*:*","matchCriteriaId":"2F992088-5E31-4625-8C3B-CE7F946C61F2"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:sd_820_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"E077FC03-F86F-417A-A3E6-BC88CB85C6F0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:sd_820:-:*:*:*:*:*:*:*","matchCriteriaId":"E016356C-94ED-4CDD-8351-97D265FE036E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:sd_820a_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"E08016A2-E4FE-4E9C-A915-C66BE157AFB5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:sd_820a:-:*:*:*:*:*:*:*","matchCriteriaId":"018452D0-007C-4740-B2AF-E5C8BBAC310F"}]}]}],"references":[{"url":"https://source.android.com/security/bulletin/2018-09-01#qualcomm-closed-source-components","source":"product-security@qualcomm.com","tags":["Third Party Advisory"]},{"url":"https://www.qualcomm.com/company/product-security/bulletins","source":"product-security@qualcomm.com","tags":["Vendor Advisory"]},{"url":"https://source.android.com/security/bulletin/2018-09-01#qualcomm-closed-source-components","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.qualcomm.com/company/product-security/bulletins","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}