Описание
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, improper input validation for nlo_event in wma_nlo_match_evt_handler(), which is received from firmware, leads to potential out of bound memory access.
Ссылки
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- PatchThird Party Advisory
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- PatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
EPSS
Процентиль: 7%
0.00028
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-20
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, improper input validation for nlo_event in wma_nlo_match_evt_handler(), which is received from firmware, leads to potential out of bound memory access.
CVSS3: 7.8
fstec
больше 8 лет назад
Уязвимость функции wma_nlo_match_evt_handler компонента WLAN операционной системы Android из репозитория CAF, позволяющая нарушителю выполнить произвольный код
EPSS
Процентиль: 7%
0.00028
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-20