In Snapdragon (Automobile, Mobile, Wear) in version MDM9607, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 617, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SDM429, SDM439, SDM632, Snapdragon_High_Med_2016, when a Trusted Application has opened the SPI/I2C interface to a particular device, it is possible for another Trusted Application to read the data on this open interface by calling the SPI/I2C read function.
AI analysis not yet available
Plain-English explanation, risk summary, and remediation steps will appear here once AI analysis is complete.
No Fix Known
No patch has been released yet. Apply workarounds or mitigations where available.
| Vendor | Product | Versions | Fixed In |
|---|---|---|---|
| qualcomm | mdm9607_firmware | - | - |
| qualcomm | msm8909w_firmware | - | - |
| qualcomm | msm8996au_firmware |
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
21
Affected Products
6
References
qualcomm / mdm9607_firmware
| - |
| - |
| qualcomm | sd210_firmware | - | - |
| qualcomm | sd212_firmware | - | - |
| qualcomm | sd205_firmware | - | - |
| qualcomm | sd425_firmware | - | - |
| qualcomm | sd427_firmware | - | - |
| qualcomm | sd430_firmware | - | - |
| qualcomm | sd435_firmware | - | - |
| qualcomm | sd450_firmware | - | - |
| qualcomm | sd617_firmware | - | - |
| qualcomm | sd625_firmware | - | - |
| qualcomm | sd650_firmware | - | - |
| qualcomm | sd652_firmware | - | - |
| qualcomm | sd820_firmware | - | - |
| qualcomm | sd820a_firmware | - | - |
| qualcomm | sd835_firmware | - | - |
| qualcomm | sdm429_firmware | - | - |
| qualcomm | sdm439_firmware | - | - |
| qualcomm | sdm632_firmware | - | - |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability
Impact