cvedb.io
CVE-2017-18292
MEDIUM · CVSS 5.5
EPSS exploitation probability: 0%
Published 2018-10-23T13:29:01.133 · Last modified 2026-06-17T01:12:33.840

Summary

Secure app running in non secure space can restart TZ by calling Widevine app API repeatedly in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 810, SD 820, SD 820A.

Affected products

qualcomm — msm8909w_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when qualcomm ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.