Chipsets.org

Vulnerability

CVE-2018-13900

Component: CELLULAR

Location: OS

Use-after-free vulnerability will occur as there is no protection for the route table`s rule in IPA driver in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in versions MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCS605, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24.

Impact

Severity (Manufact.)

N/A

Severity (NIST)

7.8

Severity (Android)

N/A

Chipsets

Devices

177

Affected Hardware

Name	Also known as	Manufacturer
SDM439	Snapdragon 439	Qualcomm
SDM630	Snapdragon 630	Qualcomm
SDM660	Snapdragon 660	Qualcomm
MSM8909w	Wear 2100 Wear 2500 Wear 3100	Qualcomm
MSM8996AU	Snapdragon 820A	Qualcomm

5 of 5 row(s) shown.

Rows per page

Page 1 of 1

Information reliability

The information on this website is intended to provide information on the big picture of chipset security and measure trends within the industry. Our information is obtained from several vantage points, checked for consistency, and automatically cross-referenced. However, this process may not always yield reliable information. Do not use the information on a particular vulnerability, chipset or device to verify your individual exposure in cases where inaccuracies are inacceptable, for instance to assess risks if you are a Politically Exposed Person.

Timeline

Introduced (est):

Apr 1, 2017

Reported:

Unknown

Advisory Published:

N/A

CVE Published:

Feb 25, 2019

Android Patch Level:

Feb 2019