Details of VAR-201804-0532

ID

VAR-201804-0532

CVE

CVE-2017-18126

TITLE

plural Qualcomm Run on product Android Vulnerabilities related to security functions

Trust: 0.8

sources: JVNDB: JVNDB-2018-003992

DESCRIPTION

In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9640, MDM9650, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA9377, QCA9379, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 808, SD 810, SD 820, SD 835, SD 845, SDM630, SDM636, SDM660, Snapdragon_High_Med_2016, the original mac spoofing feature does not use the following in probe request frames: (a) randomized sequence numbers and (b) randomized source address for cfg80211 scan, vendor scan and pno scan which may affect user privacy. plural Qualcomm Run on product Android Contains vulnerabilities related to security features.Information may be obtained. Little is known about these issues or its effects at this time. We will update this BID as more information emerges. Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance (OHA). Qualcomm MDM9206, etc. are the central processing unit (CPU) products of Qualcomm (Qualcomm) applied to different platforms. The vulnerability stems from the scanning of cfg8021, manufacturer, and pno. The program does not use random sequence numbers and random source addresses in probe request frames. Currently there is no information about this vulnerability, please keep an eye on CNNVD or vendor announcements. The following products used in (phones, cars and watches) are affected: Qualcomm MDM9206; Qualcomm MDM9607; Qualcomm MDM9640; Qualcomm MDM9650; Qualcomm QCA6174A; Qualcomm QCA6574; Qualcomm QCA6574AU; Qualcomm SD 212; Qualcomm SD 205; Qualcomm SD 410/12; Qualcomm SD 425; Qualcomm SD 427; Qualcomm SD 430; Qualcomm SD 435; Qualcomm SD 808; Qualcomm SD 810; Qualcomm SD 820; Qualcomm SD 835; Qualcomm SD 845; Qualcomm SDM630; Qualcomm SDM636; Qualcomm SDM660;

Trust: 2.07

sources: NVD: CVE-2017-18126 // JVNDB: JVNDB-2018-003992 // BID: 103671 // VULHUB: VHN-109217 // VULMON: CVE-2017-18126

AFFECTED PRODUCTS

vendor:	qualcomm	model:	sd 810	scope:	eq	version:	-	Trust: 1.6
vendor:	qualcomm	model:	sd 820	scope:	eq	version:	-	Trust: 1.6
vendor:	qualcomm	model:	sdm660	scope:	eq	version:	-	Trust: 1.6
vendor:	qualcomm	model:	sdm636	scope:	eq	version:	-	Trust: 1.6
vendor:	qualcomm	model:	sd 835	scope:	eq	version:	-	Trust: 1.6
vendor:	qualcomm	model:	sd 845	scope:	eq	version:	-	Trust: 1.6
vendor:	qualcomm	model:	sd 435	scope:	eq	version:	-	Trust: 1.6
vendor:	qualcomm	model:	mdm9206	scope:	eq	version:	-	Trust: 1.6
vendor:	qualcomm	model:	mdm9607	scope:	eq	version:	-	Trust: 1.6
vendor:	qualcomm	model:	sdm630	scope:	eq	version:	-	Trust: 1.6
vendor:	qualcomm	model:	qca9379	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6584au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 415	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 205	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 427	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 212	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 650	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 808	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 652	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 425	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca9377	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9650	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 615	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6574au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6174a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 450	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 616	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9640	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6584	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 412	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 430	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6574	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 210	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 410	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 625	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9206	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	mdm9607	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	mdm9640	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	mdm9650	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	qca6174a	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	qca6574	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	qca6574au	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	qca6584	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	qca6584au	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	qca9377	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	qca9379	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 205	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 210	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 212	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 410	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 412	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 415	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 425	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 427	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 430	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 435	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 450	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 615	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 616	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 625	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 650	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 652	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 808	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 810	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 820	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 835	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 845	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sdm630	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sdm636	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sdm660	scope:	-	version:	-	Trust: 0.8
vendor:	google	model:	pixel xl	scope:	eq	version:	0	Trust: 0.3
vendor:	google	model:	pixel c	scope:	eq	version:	0	Trust: 0.3
vendor:	google	model:	pixel xl	scope:	eq	version:	20	Trust: 0.3
vendor:	google	model:	pixel	scope:	eq	version:	20	Trust: 0.3
vendor:	google	model:	pixel	scope:	eq	version:	0	Trust: 0.3
vendor:	google	model:	nexus	scope:	eq	version:	9	Trust: 0.3
vendor:	google	model:	nexus	scope:	eq	version:	7	Trust: 0.3
vendor:	google	model:	nexus 6p	scope:	-	version:	-	Trust: 0.3
vendor:	google	model:	nexus	scope:	eq	version:	6	Trust: 0.3
vendor:	google	model:	nexus	scope:	eq	version:	5x	Trust: 0.3
vendor:	google	model:	nexus	scope:	eq	version:	5	Trust: 0.3
vendor:	google	model:	nexus	scope:	eq	version:	4	Trust: 0.3
vendor:	google	model:	nexus	scope:	eq	version:	10	Trust: 0.3
vendor:	google	model:	android	scope:	eq	version:	0	Trust: 0.3

sources: BID: 103671 // JVNDB: JVNDB-2018-003992 // CNNVD: CNNVD-201804-556 // NVD: CVE-2017-18126

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-18126
value:	HIGH
Trust: 1.0
NVD:	CVE-2017-18126
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201804-556
value:	HIGH
Trust: 0.6
VULHUB:	VHN-109217
value:	MEDIUM
Trust: 0.1
VULMON:	CVE-2017-18126
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2017-18126
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-109217
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-18126
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.0
Trust: 1.8

sources: VULHUB: VHN-109217 // VULMON: CVE-2017-18126 // JVNDB: JVNDB-2018-003992 // CNNVD: CNNVD-201804-556 // NVD: CVE-2017-18126

PROBLEMTYPE DATA

problemtype:	NVD-CWE-noinfo	Trust: 1.0
problemtype:	CWE-254	Trust: 0.9

sources: VULHUB: VHN-109217 // JVNDB: JVNDB-2018-003992 // NVD: CVE-2017-18126

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201804-556

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-201804-556

CONFIGURATIONS

sources: JVNDB: JVNDB-2018-003992

PATCH

title:	Android のセキュリティに関する公開情報 - 2018 年 4 月	url:	https://source.android.com/security/bulletin/2018-04-01	Trust: 0.8
title:	Android Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=83318	Trust: 0.6
title:	Android Security Bulletins: Android Security Bulletin—April 2018	url:	https://vulmon.com/vendoradvisory?qidtp=android_security_bulletins&qid=068d787c35ce8cea494780f9a47b5827	Trust: 0.1
title:	SamsungReleaseNotes	url:	https://github.com/samreleasenotes/SamsungReleaseNotes	Trust: 0.1

sources: VULMON: CVE-2017-18126 // JVNDB: JVNDB-2018-003992 // CNNVD: CNNVD-201804-556

EXTERNAL IDS

db:	NVD	id:	CVE-2017-18126	Trust: 2.9
db:	BID	id:	103671	Trust: 2.1
db:	JVNDB	id:	JVNDB-2018-003992	Trust: 0.8
db:	CNNVD	id:	CNNVD-201804-556	Trust: 0.6
db:	VULHUB	id:	VHN-109217	Trust: 0.1
db:	VULMON	id:	CVE-2017-18126	Trust: 0.1

sources: VULHUB: VHN-109217 // VULMON: CVE-2017-18126 // BID: 103671 // JVNDB: JVNDB-2018-003992 // CNNVD: CNNVD-201804-556 // NVD: CVE-2017-18126

REFERENCES

url:	https://source.android.com/security/bulletin/2018-04-01	Trust: 2.1
url:	http://www.securityfocus.com/bid/103671	Trust: 1.9
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-18126	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-18126	Trust: 0.8
url:	http://code.google.com/android/	Trust: 0.3
url:	https://cwe.mitre.org/data/definitions/.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://source.android.com/security/bulletin/2018-04-01.html	Trust: 0.1
url:	https://github.com/samreleasenotes/samsungreleasenotes	Trust: 0.1

sources: VULHUB: VHN-109217 // VULMON: CVE-2017-18126 // BID: 103671 // JVNDB: JVNDB-2018-003992 // CNNVD: CNNVD-201804-556 // NVD: CVE-2017-18126

CREDITS

The vendor reported these issues.

Trust: 0.3

sources: BID: 103671

SOURCES

db:	VULHUB	id:	VHN-109217
db:	VULMON	id:	CVE-2017-18126
db:	BID	id:	103671
db:	JVNDB	id:	JVNDB-2018-003992
db:	CNNVD	id:	CNNVD-201804-556
db:	NVD	id:	CVE-2017-18126

LAST UPDATE DATE

2024-11-23T21:39:18.072000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-109217	date:	2019-10-03T00:00:00
db:	VULMON	id:	CVE-2017-18126	date:	2019-10-03T00:00:00
db:	BID	id:	103671	date:	2018-04-05T00:00:00
db:	JVNDB	id:	JVNDB-2018-003992	date:	2018-06-08T00:00:00
db:	CNNVD	id:	CNNVD-201804-556	date:	2019-10-23T00:00:00
db:	NVD	id:	CVE-2017-18126	date:	2024-11-21T03:19:24.290

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-109217	date:	2018-04-11T00:00:00
db:	VULMON	id:	CVE-2017-18126	date:	2018-04-11T00:00:00
db:	BID	id:	103671	date:	2018-04-05T00:00:00
db:	JVNDB	id:	JVNDB-2018-003992	date:	2018-06-08T00:00:00
db:	CNNVD	id:	CNNVD-201804-556	date:	2018-04-12T00:00:00
db:	NVD	id:	CVE-2017-18126	date:	2018-04-11T15:29:00.553