CVE-2017-18301

MEDIUM

Qualcomm Small Cell SoC and Snapdragon - Denial of Service via NULL Argument in ICE Regulator

Title source: llm

Description

In Small Cell SoC and Snapdragon (Automobile, Mobile, Wear) in version FSM9055, FSM9955, MDM9607, MDM9640, MDM9650, MSM8909W, SD 425, SD 427, SD 430, SD 435, SD 450, SD 617, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SDM630, SDM636, SDM660, SDX20, Snapdragon_High_Med_2016, providing the NULL argument of ICE regulator while processing create key IOCTL results in system restart.

References (3)

Core 3

Core References

Vendor Advisory x_refsource_confirm

https://www.qualcomm.com/company/product-security/bulletins

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1041432

Vendor Advisory x_refsource_confirm

https://source.android.com/security/bulletin/2018-08-01#qualcomm-closed-source-components

Scores

CVSS v3 5.5

EPSS 0.0005

EPSS Percentile 15.5%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-476

Status published

Products (23)

qualcomm/fsm9055_firmware

qualcomm/fsm9955_firmware

qualcomm/mdm9607_firmware

qualcomm/mdm9640_firmware

qualcomm/mdm9650_firmware

qualcomm/msm8909w_firmware

qualcomm/sd425_firmware

qualcomm/sd427_firmware

qualcomm/sd430_firmware

qualcomm/sd435_firmware

... and 13 more

Published Sep 20, 2018

Tracked Since Feb 18, 2026