cvelist/2018/13xxx/CVE-2018-13904.json

{
    "CVE_data_meta": {
        "ASSIGNER": "product-security@qualcomm.com",
        "ID": "CVE-2018-13904",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "MDM9206, MDM9607, MDM9650, MDM9655, QCS605, SD 410/12, SD 675, SD 712 / SD 710 / SD 670, SD 8CX, SXR1130"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "Qualcomm, Inc."
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "Improper input validation in SCM handler to access storage in TZ can lead to unauthorized access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in versions MDM9206, MDM9607, MDM9650, MDM9655, QCS605, SD 410/12, SD 675, SD 712 / SD 710 / SD 670, SD 8CX, SXR1130."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Improper Input Validation in Storage Access"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "https://www.qualcomm.com/company/product-security/bulletins",
                "refsource": "CONFIRM",
                "url": "https://www.qualcomm.com/company/product-security/bulletins"
            },
            {
                "name": "106845",
                "refsource": "BID",
                "url": "http://www.securityfocus.com/bid/106845"
            }
        ]
    }
}
- Synchronized data. 2018-07-11 10:03:04 -04:00			`{`
"-Synchronized-Data." 2019-03-18 07:04:47 +00:00			`"CVE_data_meta": {`
			`"ASSIGNER": "product-security@qualcomm.com",`
			`"ID": "CVE-2018-13904",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "MDM9206, MDM9607, MDM9650, MDM9655, QCS605, SD 410/12, SD 675, SD 712 / SD 710 / SD 670, SD 8CX, SXR1130"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "Qualcomm, Inc."`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
Qualcomm_2-25-2019 CVE publish 2019-02-25 15:30:58 +05:30			`{`
"-Synchronized-Data." 2019-03-18 07:04:47 +00:00			`"lang": "eng",`
			`"value": "Improper input validation in SCM handler to access storage in TZ can lead to unauthorized access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in versions MDM9206, MDM9607, MDM9650, MDM9655, QCS605, SD 410/12, SD 675, SD 712 / SD 710 / SD 670, SD 8CX, SXR1130."`
Qualcomm_2-25-2019 CVE publish 2019-02-25 15:30:58 +05:30			`}`
"-Synchronized-Data." 2019-03-18 07:04:47 +00:00			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Improper Input Validation in Storage Access"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "https://www.qualcomm.com/company/product-security/bulletins",`
			`"refsource": "CONFIRM",`
			`"url": "https://www.qualcomm.com/company/product-security/bulletins"`
			`},`
			`{`
			`"name": "106845",`
			`"refsource": "BID",`
			`"url": "http://www.securityfocus.com/bid/106845"`
			`}`
			`]`
			`}`
			`}`