CVE-2017-18297

HIGH

Qualcomm SD 425 Firmware - Double Free

Title source: rule

Double memory free while closing TEE SE API Session management in Snapdragon Mobile in version SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820.

CVSS v3 7.8

EPSS 0.0004

EPSS Percentile 13.3%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-415

Status published

qualcomm/sd_425_firmware

qualcomm/sd_430_firmware

qualcomm/sd_450_firmware

qualcomm/sd_625_firmware

qualcomm/sd_650_firmware

qualcomm/sd_652_firmware

qualcomm/sd_820_firmware

Published Oct 23, 2018

Tracked Since Feb 18, 2026