Home

Description

Wrong configuration in Touch Pal application can collect user behavior data without awareness by the user.

PUBLISHED Reserved 2018-06-07 | Published 2024-11-26 | Updated 2024-11-26 | Assigner qualcomm




HIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-16 Configuration

Product status

Default status
unaffected

MDM9206
affected

MDM9607
affected

MDM9640
affected

MDM9650
affected

Qualcomm 215
affected

SD 210/SD 212/SD 205
affected

SD 425
affected

SD 427
affected

SD 430
affected

SD 435
affected

SD 439 / SD 429
affected

SD 450
affected

SD 625
affected

SD 632
affected

SD 845 / SD 850
affected

SDA660
affected

SDM439
affected

SDX20
affected

References

docs.qualcomm.com/...securitybulletin/may-2018-bulletin.html

cve.org (CVE-2018-11922)

nvd.nist.gov (CVE-2018-11922)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.