exploitDog

CVE-2018-11905

Опубликовано: 07 дек. 2018

Источник: nvd

CVSS3: 9.8

CVSS2: 10

EPSS Низкий

Описание

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Possible buffer overflow in WLAN function due to lack of input validation in values received from firmware.

Ссылки

http://www.securityfocus.com/bid/105872
Third Party Advisory
VDB Entry
https://source.android.com/security/bulletin/2018-11-01#qualcomm-components
Patch
Vendor Advisory
http://www.securityfocus.com/bid/105872
Third Party Advisory
VDB Entry
https://source.android.com/security/bulletin/2018-11-01#qualcomm-components
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

EPSS

Процентиль: 31%

0.0012

Низкий

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-7h23-q895-993p

CVSS3: 9.8

github

больше 3 лет назад

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Possible buffer overflow in WLAN function due to lack of input validation in values received from firmware.

EPSS

Процентиль: 31%

0.0012

Низкий

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-119