What is the severity of CVE-2018-11847?

CVE-2018-11847 has a high severity rating due to the potential for compromising the trusted execution environment.

How do I fix CVE-2018-11847?

To address CVE-2018-11847, update your affected Qualcomm device firmware to the latest version that includes fixes.

Which products are affected by CVE-2018-11847?

CVE-2018-11847 affects various Qualcomm products, including devices utilizing Snapdragon Auto, Connectivity, and Compute platforms.

What are the potential impacts of CVE-2018-11847?

CVE-2018-11847 can lead to the corruption of QSEE kernel memory, resulting in compromised system integrity.

Is there a specific patch for CVE-2018-11847?

Yes, Qualcomm has released patches for CVE-2018-11847, and users should apply them through official firmware updates.

Vulnerability/
CVE-2018-11847

high

7.8

CWE

7/1/2019

11/2/2019

26/8/2024

CVE-2018-11847: Input Validation

First published: Mon Jan 07 2019(Updated: )

Malicious TA can tag QSEE kernel memory and map to EL0, there by corrupting the physical memory as well it can be used to corrupt the QSEE kernel and compromise the whole TEE in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables and Snapdragon Wired Infrastructure and Networking in versions IPQ8074, MDM9206, MDM9607, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCA8081, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 650/52, SD 820, SD 820A, SD 835, SD 8CX, SDM439 and Snapdragon_High_Med_2016

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
Android
Qualcomm IPQ8074 Firmware
Qualcomm IPQ8074A
Qualcomm MDM9206
Qualcomm MDM9206 firmware
Qualcomm MD9607 Firmware
Qualcomm MDM9607 firmware
Qualcomm MDM9650
Qualcomm MDM9650 firmware
Qualcomm MDM9655 firmware
Qualcomm MDM9655 firmware
Qualcomm MSM8909W
Qualcomm Snapdragon 8909
qualcomm MSM8996AU firmware
Qualcomm MSM8996AU Firmware
Qualcomm QCA8081 firmware
Qualcomm QCA8081 firmware
Qualcomm SD210 Firmware
Qualcomm SD 210 Firmware
Qualcomm SD 212
Qualcomm SD 212 Firmware
Qualcomm SD205 Firmware
Qualcomm SD205 Firmware
Qualcomm SD410 Firmware
Qualcomm Snapdragon 410
Qualcomm SD412 Firmware
Qualcomm SD412
Qualcomm SDR425 Firmware
Qualcomm Snapdragon 425
Qualcomm SD427 Firmware
Qualcomm SD 427 firmware
Qualcomm SD 430 Firmware
Qualcomm SD 430 Firmware
qualcomm sd435 firmware
Qualcomm Snapdragon 435
Qualcomm SD 439
Qualcomm SD 439 firmware
Qualcomm SD429 Firmware
Qualcomm SD 429 Firmware
Qualcomm SDM450 Firmware
Qualcomm SDM450
Qualcomm SD615 Firmware
Qualcomm Snapdragon 615
Qualcomm SD 616 Firmware
Qualcomm Snapdragon 616
Qualcomm Snapdragon 415 Firmware
Qualcomm Snapdragon 415
Qualcomm SD 625 Firmware
Qualcomm Snapdragon 625
Qualcomm SD632 Firmware
Qualcomm SD 632 firmware
Qualcomm SD650 Firmware
Qualcomm Snapdragon 650
Qualcomm SD652 Firmware
Qualcomm SD652 Firmware
Qualcomm SD820 Firmware
Qualcomm SD820 Firmware
Qualcomm SD820A Firmware
Qualcomm SD820A Firmware
Qualcomm SD835 Firmware
Qualcomm Snapdragon 835
Qualcomm SD 8cx firmware
Qualcomm Snapdragon 8cx
qualcomm SDM439 firmware
Qualcomm SDM439 Firmware
Qualcomm Snapdragon High Med 2016
Qualcomm Snapdragon High Med 2016 Firmware

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2018-11847?
CVE-2018-11847 has a high severity rating due to the potential for compromising the trusted execution environment.
How do I fix CVE-2018-11847?
To address CVE-2018-11847, update your affected Qualcomm device firmware to the latest version that includes fixes.
Which products are affected by CVE-2018-11847?
CVE-2018-11847 affects various Qualcomm products, including devices utilizing Snapdragon Auto, Connectivity, and Compute platforms.
What are the potential impacts of CVE-2018-11847?
CVE-2018-11847 can lead to the corruption of QSEE kernel memory, resulting in compromised system integrity.
Is there a specific patch for CVE-2018-11847?
Yes, Qualcomm has released patches for CVE-2018-11847, and users should apply them through official firmware updates.

agent/references
agent/type
agent/first-publish-date
agent/severity
agent/weakness
agent/author
agent/description
collector/mitre-cve
source/MITRE
agent/event
agent/last-modified-date
agent/source
agent/tags
collector/android-source
source/Android
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/softwarecombine
collector/nvd-index
vendor/google
canonical/android
vendor/qualcomm
canonical/qualcomm ipq8074 firmware
canonical/qualcomm ipq8074a
canonical/qualcomm mdm9206
canonical/qualcomm mdm9206 firmware
canonical/qualcomm md9607 firmware
canonical/qualcomm mdm9607 firmware
canonical/qualcomm mdm9650
canonical/qualcomm mdm9650 firmware
canonical/qualcomm mdm9655 firmware
canonical/qualcomm msm8909w
canonical/qualcomm snapdragon 8909
canonical/qualcomm msm8996au firmware
canonical/qualcomm qca8081 firmware
canonical/qualcomm sd210 firmware
canonical/qualcomm sd 210 firmware
canonical/qualcomm sd 212
canonical/qualcomm sd 212 firmware
canonical/qualcomm sd205 firmware
canonical/qualcomm sd410 firmware
canonical/qualcomm snapdragon 410
canonical/qualcomm sd412 firmware
canonical/qualcomm sd412
canonical/qualcomm sdr425 firmware
canonical/qualcomm snapdragon 425
canonical/qualcomm sd427 firmware
canonical/qualcomm sd 427 firmware
canonical/qualcomm sd 430 firmware
canonical/qualcomm sd435 firmware
canonical/qualcomm snapdragon 435
canonical/qualcomm sd 439
canonical/qualcomm sd 439 firmware
canonical/qualcomm sd429 firmware
canonical/qualcomm sd 429 firmware
canonical/qualcomm sdm450 firmware
canonical/qualcomm sdm450
canonical/qualcomm sd615 firmware
canonical/qualcomm snapdragon 615
canonical/qualcomm sd 616 firmware
canonical/qualcomm snapdragon 616
canonical/qualcomm snapdragon 415 firmware
canonical/qualcomm snapdragon 415
canonical/qualcomm sd 625 firmware
canonical/qualcomm snapdragon 625
canonical/qualcomm sd632 firmware
canonical/qualcomm sd 632 firmware
canonical/qualcomm sd650 firmware
canonical/qualcomm snapdragon 650
canonical/qualcomm sd652 firmware
canonical/qualcomm sd820 firmware
canonical/qualcomm sd820a firmware
canonical/qualcomm sd835 firmware
canonical/qualcomm snapdragon 835
canonical/qualcomm sd 8cx firmware
canonical/qualcomm snapdragon 8cx
canonical/qualcomm sdm439 firmware
canonical/qualcomm snapdragon high med 2016
canonical/qualcomm snapdragon high med 2016 firmware