CVE-2018-11922
CRITICALDescription
Wrong configuration in Touch Pal application can collect user behavior data without awareness by the user.
Is your site exposed to CVE-2018-11922?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| qualcomm | mdm9206_firmware |
| qualcomm | mdm9206 |
| qualcomm | mdm9607_firmware |
| qualcomm | mdm9607 |
| qualcomm | mdm9640_firmware |
| qualcomm | mdm9640 |
| qualcomm | mdm9650_firmware |
| qualcomm | mdm9650 |
| qualcomm | 215_firmware |
| qualcomm | 215 |
| qualcomm | sd_210_firmware |
| qualcomm | sd_210 |
| qualcomm | sd_212_firmware |
| qualcomm | sd_212 |
| qualcomm | sd_205_firmware |
| qualcomm | sd_205 |
| qualcomm | sd_425_firmware |
| qualcomm | sd_425 |
| qualcomm | sd_427_firmware |
| qualcomm | sd_427 |
| qualcomm | sd_430_firmware |
| qualcomm | sd_430 |
| qualcomm | sd_435_firmware |
| qualcomm | sd_435 |
| qualcomm | sd_439_firmware |
| qualcomm | sd_439 |
| qualcomm | sd_429_firmware |
| qualcomm | sd_429 |
| qualcomm | sd_450_firmware |
| qualcomm | sd_450 |
| qualcomm | sd_625_firmware |
| qualcomm | sd_625 |
| qualcomm | sd_632_firmware |
| qualcomm | sd_632 |
| qualcomm | sd_845_firmware |
| qualcomm | sd_845 |
| qualcomm | sd_850_firmware |
| qualcomm | sd_850 |
| qualcomm | sda660_firmware |
| qualcomm | sda660 |
| qualcomm | sdm439_firmware |
| qualcomm | sdm439 |
| qualcomm | sdx20_firmware |
| qualcomm | sdx20 |
References
Frequently Asked Questions
What is CVE-2018-11922? +
How severe is CVE-2018-11922? +
What products are affected by CVE-2018-11922? +
How do I check if I'm vulnerable to CVE-2018-11922? +
Related Vulnerabilities
In WhatsUp Gold versions released before 2024.0.1, a remote unauthenticated attacker could leverage this vulnerability to execute code in the …
Busybox 1.31.1 - Multiple Known Vulnerabilities.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5.
Permission verification vulnerability in the wpa_supplicant module Impact: Successful exploitation of this vulnerability will affect availability.
Access permission verification vulnerability in the Settings module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
Transient DOS in WLAN Host and Firmware when large number of open authentication frames are sent with an invalid transaction …
Privilege escalation vulnerability in the PMS module Impact: Successful exploitation of this vulnerability may affect service confidentiality.