Vulnerability
CVE-2017-11088
Location: OS
Improper Input Validation in Linux io-prefetch in Snapdragon Mobile and Snapdragon Wear, A SQL injection vulnerability exists in versions MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 430, SD 450, SD 617, SD 625, SD 650/52, SD 820, SD 835, SD 845.
Impact
Severity (Manufact.)
N/A
Severity (NIST)
9.8
Severity (Android)
N/A
Chipsets
13
Devices
659
Affected Hardware
| Name | Also known as | Manufacturer |
|---|---|---|
| MSM8909 | Snapdragon 210 | Qualcomm |
| MSM8909AA | Snapdragon 212 | Qualcomm |
| MSM8937 | Snapdragon 430 | Qualcomm |
| SDM450 | Snapdragon 450 | Qualcomm |
| MSM8952 | Snapdragon 617 | Qualcomm |
| MSM8953 | Snapdragon 625 | Qualcomm |
| MSM8956 | Snapdragon 650 | Qualcomm |
| MSM8996Lite | Snapdragon 820 | Qualcomm |
| MSM8996 | Snapdragon 820 | Qualcomm |
| MSM8998 | Snapdragon 835 Snapdragon 835 Mobile PC Platform | Qualcomm |
13 of 13 row(s) shown.
Rows per page
Page 1 of 2
Information reliability
The information on this website is intended to provide information on the big picture of chipset security and measure trends within the industry. Our information is obtained from several vantage points, checked for consistency, and automatically cross-referenced. However, this process may not always yield reliable information. Do not use the information on a particular vulnerability, chipset or device to verify your individual exposure in cases where inaccuracies are inacceptable, for instance to assess risks if you are a Politically Exposed Person.
Timeline
Introduced (est):
Jan 1, 2014
Reported:
Sep 1, 2017
Advisory Published:
Jul 26, 2018
CVE Published:
Jul 6, 2018
Android Patch Level:
None
