How severe is CVE-2018-12012 vulnerability?

CVE-2018-12012 vulnerability has a severity value of 7.8 (high).

Which software versions are affected by CVE-2018-12012 vulnerability?

Qualcomm Mdm9206 Firmware, Qualcomm Mdm9650 Firmware, Qualcomm Mdm9655 Firmware, Qualcomm Qcs605 Firmware, Qualcomm Sd 210 Firmware, Qualcomm Sd 212 Firmware, Qualcomm Sd 205 Firmware, Qualcomm Sd 410 Firmware, Qualcomm Sd 412 Firmware, Qualcomm Sd 616 Firmware...

How can I fix CVE-2018-12012 vulnerability?

To fix CVE-2018-12012 vulnerability, it is recommended to apply the security patches provided by Qualcomm and follow their guidelines.

Where can I find more information about CVE-2018-12012 vulnerability?

You can find more information about CVE-2018-12012 vulnerability on the Android Security Bulletin from April 2019 and the Qualcomm Product Security Bulletins.

Vulnerability/
CVE-2018-12012

high

7.8

CWE

119

1/4/2019

24/5/2019

26/8/2024

CVE-2018-12012: Buffer Overflow

First published: Mon Apr 01 2019(Updated: )

While updating blacklisting region shared buffered memory region is not validated against newly updated black list, causing boot-up to be compromised in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9206, MDM9607, MDM9650, MDM9655, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 615/16/SD 415, SD 712 / SD 710 / SD 670, SD 835, SD 845 / SD 850, SD 8CX, SXR1130

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
Android
Qualcomm MDM9206
Qualcomm MDM9206 firmware
Qualcomm MD9607 Firmware
Qualcomm MDM9607 firmware
Qualcomm MDM9650
Qualcomm MDM9650 firmware
Qualcomm MDM9655 firmware
Qualcomm MDM9655 firmware
Qualcomm QCS605
Qualcomm QCS605 Firmware
Qualcomm SD210 Firmware
Qualcomm SD 210 Firmware
Qualcomm SD 212
Qualcomm SD 212 Firmware
Qualcomm 205 Firmware
Qualcomm SD205 Firmware
Qualcomm SD410 Firmware
Qualcomm Snapdragon 410
Qualcomm SD412 Firmware
Qualcomm SD412
Qualcomm SD615 Firmware
Qualcomm Snapdragon 615
Qualcomm SD 616 Firmware
Qualcomm Snapdragon 616
Qualcomm Snapdragon 415 Firmware
Qualcomm Snapdragon 415
Qualcomm Snapdragon 712 Firmware
Qualcomm Snapdragon 712
Qualcomm SD710 Firmware
Qualcomm Snapdragon 710
Qualcomm SD 670
Qualcomm SDM670
Qualcomm SD835 Firmware
Qualcomm Snapdragon 835
Qualcomm SDA845 Firmware
Qualcomm SD845
Qualcomm SD850 Firmware
Qualcomm SD850
Qualcomm SD 8cx Firmware
Qualcomm Snapdragon 8cx
Qualcomm SXR1130
Qualcomm SXR1130 Firmware

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2018-12012 vulnerability?
CVE-2018-12012 vulnerability is a security flaw that allows an attacker to compromise the boot-up process in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon M...
How severe is CVE-2018-12012 vulnerability?
CVE-2018-12012 vulnerability has a severity value of 7.8 (high).
Which software versions are affected by CVE-2018-12012 vulnerability?
Qualcomm Mdm9206 Firmware, Qualcomm Mdm9650 Firmware, Qualcomm Mdm9655 Firmware, Qualcomm Qcs605 Firmware, Qualcomm Sd 210 Firmware, Qualcomm Sd 212 Firmware, Qualcomm Sd 205 Firmware, Qualcomm Sd 410 Firmware, Qualcomm Sd 412 Firmware, Qualcomm Sd 616 Firmware...
How can I fix CVE-2018-12012 vulnerability?
To fix CVE-2018-12012 vulnerability, it is recommended to apply the security patches provided by Qualcomm and follow their guidelines.
Where can I find more information about CVE-2018-12012 vulnerability?
You can find more information about CVE-2018-12012 vulnerability on the Android Security Bulletin from April 2019 and the Qualcomm Product Security Bulletins.

agent/type
agent/first-publish-date
agent/severity
agent/weakness
agent/author
agent/references
agent/description
collector/mitre-cve
source/MITRE
agent/event
agent/last-modified-date
agent/source
collector/android-source
source/Android
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/tags
agent/softwarecombine
collector/nvd-index
vendor/google
canonical/android
vendor/qualcomm
canonical/qualcomm mdm9206
canonical/qualcomm mdm9206 firmware
canonical/qualcomm md9607 firmware
canonical/qualcomm mdm9607 firmware
canonical/qualcomm mdm9650
canonical/qualcomm mdm9650 firmware
canonical/qualcomm mdm9655 firmware
canonical/qualcomm qcs605
canonical/qualcomm qcs605 firmware
canonical/qualcomm sd210 firmware
canonical/qualcomm sd 210 firmware
canonical/qualcomm sd 212
canonical/qualcomm sd 212 firmware
canonical/qualcomm 205 firmware
canonical/qualcomm sd205 firmware
canonical/qualcomm sd410 firmware
canonical/qualcomm snapdragon 410
canonical/qualcomm sd412 firmware
canonical/qualcomm sd412
canonical/qualcomm sd615 firmware
canonical/qualcomm snapdragon 615
canonical/qualcomm sd 616 firmware
canonical/qualcomm snapdragon 616
canonical/qualcomm snapdragon 415 firmware
canonical/qualcomm snapdragon 415
canonical/qualcomm snapdragon 712 firmware
canonical/qualcomm snapdragon 712
canonical/qualcomm sd710 firmware
canonical/qualcomm snapdragon 710
canonical/qualcomm sd 670
canonical/qualcomm sdm670
canonical/qualcomm sd835 firmware
canonical/qualcomm snapdragon 835
canonical/qualcomm sda845 firmware
canonical/qualcomm sd845
canonical/qualcomm sd850 firmware
canonical/qualcomm sd850
canonical/qualcomm sd 8cx firmware
canonical/qualcomm snapdragon 8cx
canonical/qualcomm sxr1130
canonical/qualcomm sxr1130 firmware

CVE-2018-12012: Buffer Overflow

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2018-12012 vulnerability?

How severe is CVE-2018-12012 vulnerability?

Which software versions are affected by CVE-2018-12012 vulnerability?

How can I fix CVE-2018-12012 vulnerability?

Where can I find more information about CVE-2018-12012 vulnerability?

Company

Resources

Contact