CVE-2018-11867

Опубликовано: 29 окт. 2018

Источник: nvd

CVSS3: 7.8

CVSS2: 7.2

EPSS Низкий

Описание

Lack of buffer length check before copying in WLAN function while processing FIPS event, can lead to a buffer overflow in Snapdragon Mobile in version SD 845.

Ссылки

http://www.securityfocus.com/bid/107681
Third Party Advisory
VDB Entry
https://www.qualcomm.com/company/product-security/bulletins
Vendor Advisory
http://www.securityfocus.com/bid/107681
Third Party Advisory
VDB Entry
https://www.qualcomm.com/company/product-security/bulletins
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:qualcomm:sd_845_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_845:-:*:*:*:*:*:*:*

EPSS

Процентиль: 12%

0.0004

Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-35m9-g697-gr77