How severe is CVE-2018-12012 vulnerability?

CVE-2018-12012 vulnerability has a severity value of 7.8 (high).

Which software versions are affected by CVE-2018-12012 vulnerability?

Qualcomm Mdm9206 Firmware, Qualcomm Mdm9650 Firmware, Qualcomm Mdm9655 Firmware, Qualcomm Qcs605 Firmware, Qualcomm Sd 210 Firmware, Qualcomm Sd 212 Firmware, Qualcomm Sd 205 Firmware, Qualcomm Sd 410 Firmware, Qualcomm Sd 412 Firmware, Qualcomm Sd 616 Firmware...

How can I fix CVE-2018-12012 vulnerability?

To fix CVE-2018-12012 vulnerability, it is recommended to apply the security patches provided by Qualcomm and follow their guidelines.

Where can I find more information about CVE-2018-12012 vulnerability?

You can find more information about CVE-2018-12012 vulnerability on the Android Security Bulletin from April 2019 and the Qualcomm Product Security Bulletins.

Vulnerability/
CVE-2018-12012

high

7.8

CWE

119

1/4/2019

25/10/2022

CVE-2018-12012: Buffer Overflow

First published: Mon Apr 01 2019(Updated: )

While updating blacklisting region shared buffered memory region is not validated against newly updated black list, causing boot-up to be compromised in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9206, MDM9607, MDM9650, MDM9655, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 615/16/SD 415, SD 712 / SD 710 / SD 670, SD 835, SD 845 / SD 850, SD 8CX, SXR1130

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
Google Android
Qualcomm Mdm9206 Firmware
Qualcomm Mdm9206
Qualcomm Mdm9607 Firmware
Qualcomm Mdm9607
Qualcomm Mdm9650 Firmware
Qualcomm Mdm9650
Qualcomm Mdm9655 Firmware
Qualcomm Mdm9655
Qualcomm Qcs605 Firmware
Qualcomm Qcs605
Qualcomm Sd 210 Firmware
Qualcomm Sd 210
Qualcomm Sd 212 Firmware
Qualcomm Sd 212
Qualcomm Sd 205 Firmware
Qualcomm Sd 205
Qualcomm Sd 410 Firmware
Qualcomm Sd 410
Qualcomm Sd 412 Firmware
Qualcomm Sd 412
Qualcomm Sd 615 Firmware
Qualcomm Sd 615
Qualcomm Sd 616 Firmware
Qualcomm Sd 616
Qualcomm Sd 415 Firmware
Qualcomm Sd 415
Qualcomm Sd 712 Firmware
Qualcomm Sd 712
Qualcomm Sd 710 Firmware
Qualcomm Sd 710
Qualcomm Sd 670 Firmware
Qualcomm Sd 670
Qualcomm Sd 835 Firmware
Qualcomm Sd 835
Qualcomm Sd 845 Firmware
Qualcomm Sd 845
Qualcomm Sd 850 Firmware
Qualcomm Sd 850
Qualcomm Sd 8cx Firmware
Qualcomm Sd 8cx
Qualcomm Sxr1130 Firmware
Qualcomm Sxr1130

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2018-12012 vulnerability?
CVE-2018-12012 vulnerability is a security flaw that allows an attacker to compromise the boot-up process in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon M...
How severe is CVE-2018-12012 vulnerability?
CVE-2018-12012 vulnerability has a severity value of 7.8 (high).
Which software versions are affected by CVE-2018-12012 vulnerability?
Qualcomm Mdm9206 Firmware, Qualcomm Mdm9650 Firmware, Qualcomm Mdm9655 Firmware, Qualcomm Qcs605 Firmware, Qualcomm Sd 210 Firmware, Qualcomm Sd 212 Firmware, Qualcomm Sd 205 Firmware, Qualcomm Sd 410 Firmware, Qualcomm Sd 412 Firmware, Qualcomm Sd 616 Firmware...
How can I fix CVE-2018-12012 vulnerability?
To fix CVE-2018-12012 vulnerability, it is recommended to apply the security patches provided by Qualcomm and follow their guidelines.
Where can I find more information about CVE-2018-12012 vulnerability?
You can find more information about CVE-2018-12012 vulnerability on the Android Security Bulletin from April 2019 and the Qualcomm Product Security Bulletins.

CVE-2018-12012: Buffer Overflow

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2018-12012 vulnerability?

How severe is CVE-2018-12012 vulnerability?

Which software versions are affected by CVE-2018-12012 vulnerability?

How can I fix CVE-2018-12012 vulnerability?

Where can I find more information about CVE-2018-12012 vulnerability?

Company

Resources

Contact