CVE-2018-11259

CVE numbers: CVE-2018-11259 [Bulletin-CVE-2018-11259]
Coordinated disclosure?: unknown
Categories: Qualcomm closed-source components
Details: Due to Improper Access Control of NAND-based EFS in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, From fastboot on a NAND-based device, the EFS partition can be erased. Apps processor then has non-secure world full read/write access to the partition until the modem boots and configures the EFS partition addresses in its MPU partition. [NIST-CVE-2018-11259]
Discovered by: on: Unknown
Reported on: 2018-07-01 [Bulletin-CVE-2018-11259]
Fixed on: Unknown
Fix released on: 2018-07-05 [Bulletin-CVE-2018-11259]
Affected versions: regex:
Affected devices:
Affected manufacturers: Qualcomm [Bulletin-CVE-2018-11259]
Fixed versions:
Submission: by: Daniel Carter, on: 2019-07-25

AndroidVulnerabilities.org