First published: Mon May 06 2019(Updated: )
Out-of-Bounds access in TZ due to invalid index calculated to check against DDR in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCA8081, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 650/52, SD 820, SD 820A, SDM439, Snapdragon_High_Med_2016
Credit: product-security@qualcomm.com
Affected Software | Affected Version | How to fix |
---|---|---|
Android | ||
Qualcomm IPQ8074 Firmware | ||
Qualcomm IPQ8074A | ||
Qualcomm MDM9206 | ||
Qualcomm MDM9206 firmware | ||
Qualcomm MD9607 Firmware | ||
Qualcomm MDM9607 firmware | ||
Qualcomm MDM9650 | ||
Qualcomm MDM9650 firmware | ||
Qualcomm MDM9655 firmware | ||
Qualcomm MDM9655 firmware | ||
qualcomm MSM8996AU firmware | ||
Qualcomm MSM8996AU Firmware | ||
Qualcomm QCA8081 firmware | ||
Qualcomm QCA8081 firmware | ||
Qualcomm 215 Firmware | ||
Qualcomm 215 | ||
Qualcomm SD410 Firmware | ||
Qualcomm Snapdragon 410 | ||
Qualcomm SD412 Firmware | ||
Qualcomm SD412 | ||
Qualcomm SDR425 Firmware | ||
Qualcomm Snapdragon 425 | ||
Qualcomm SD427 Firmware | ||
Qualcomm SD 427 firmware | ||
Qualcomm SD 430 Firmware | ||
Qualcomm SD 430 Firmware | ||
qualcomm sd435 firmware | ||
Qualcomm Snapdragon 435 | ||
Qualcomm SD 439 | ||
Qualcomm SD 439 firmware | ||
Qualcomm SDA429W Firmware | ||
Qualcomm SD 429 Firmware | ||
Qualcomm SDM450 Firmware | ||
Qualcomm SDM450 | ||
Qualcomm SD 625 Firmware | ||
Qualcomm Snapdragon 625 | ||
Qualcomm SD632 Firmware | ||
Qualcomm SD 632 firmware | ||
Qualcomm SD650 Firmware | ||
Qualcomm Snapdragon 650 | ||
Qualcomm SD652 Firmware | ||
Qualcomm SD652 Firmware | ||
Qualcomm SD820 Firmware | ||
Qualcomm SD820 Firmware | ||
Qualcomm SD820A Firmware | ||
Qualcomm SD820A Firmware | ||
qualcomm SDM439 firmware | ||
Qualcomm SDM439 Firmware | ||
Qualcomm Snapdragon High Med 2016 | ||
Qualcomm Snapdragon High Med 2016 Firmware |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-13910 is a vulnerability that allows out-of-bounds access in TZ due to an invalid index calculated to check against DDR in various Qualcomm Snapdragon products.
CVE-2018-13910 affects Google Android, Qualcomm Ipq8074 Firmware, and Qualcomm Mdm9206 Firmware.
CVE-2018-13910 has a severity level of high.
To fix CVE-2018-13910, it is recommended to apply the patches and updates provided by the vendors.
More information about CVE-2018-13910 can be found on the Qualcomm Product Security Bulletins and the Android Security Bulletins websites.