Due to Improper Access Control of NAND-based EFS in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, From fastboot on a NAND-based device, the EFS partition can be erased. Apps processor then has non-secure world full read/write access to the partition until the modem boots and configures the EFS partition addresses in its MPU partition.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: qualcomm

Published: 2018-07-06T17:00:00Z

Updated: 2024-09-17T00:57:03.674Z

Reserved: 2018-05-18T00:00:00

Link: CVE-2018-11259

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-07-06T17:29:00.757

Modified: 2024-11-21T03:43:00.527

Link: CVE-2018-11259

cve-icon Redhat

No data.