Описание
In all Qualcomm products with Android releases from CAF using the Linux kernel, in wma_unified_link_radio_stats_event_handler(), the number of radio channels coming from firmware is not properly validated, potentially leading to an integer overflow vulnerability followed by a buffer overflow.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
EPSS
Процентиль: 2%
0.00015
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-190
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
In all Qualcomm products with Android releases from CAF using the Linux kernel, in wma_unified_link_radio_stats_event_handler(), the number of radio channels coming from firmware is not properly validated, potentially leading to an integer overflow vulnerability followed by a buffer overflow.
EPSS
Процентиль: 2%
0.00015
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-190