Improper Error Handling in RPMB Writes Allows Bypass of Anti-Rollback in Snapdragon Devices

Improper Error Handling in RPMB Writes Allows Bypass of Anti-Rollback in Snapdragon Devices

CVE-2018-3595 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

Anti-rollback can be bypassed in replay scenario during app loading due to improper error handling of RPMB writes in snapdragon automobile, snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SDA660, SDX24, SXR1130

Learn more about our Mobile App Penetration Testing.