CVE-2017-11081

2018-01-0200:00:00

qualcomm

www.cve.org

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is a potential buffer overflow vulnerability in hdd_parse_setrmcenable_command and hdd_parse_setrmcactionperiod_command APIs as buffers defined in this API can hold maximum 32 bytes but data more than 32 bytes can get copied.

CNA Affected

[
  {
    "product": "Android for MSM, Firefox OS for MSM, QRD Android",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "All Android releases from CAF using the Linux kernel"
      }
    ]
  }
]

References

source.android.com/security/bulletin/pixel/2018-01-01