Loading
Generated remediation guidance and an executive summary. No account required.
app/aboot/aboot.c in the Little Kernel (LK) bootloader, as distributed with Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to overwrite signature-verification code via crafted boot-image load-destination header values that specify memory locations within bootloader memory.
Use CWE-20, Codeaurora vendor hub and Android-Msm product page to widen CVE-2013-2598 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2013-2597, CVE-2013-4736 and CVE-2013-2595 for nearby disclosures in the same product family.