CVE-2018-11893

2018-09-1914:00:00

qualcomm

www.cve.org

AI Score

8.2

Confidence

High

EPSS

Percentile

12.6%

JSON

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing vendor scan request, when input argument - length of request IEs is greater than maximum can lead to a buffer overflow.

References

source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-3.0/commit/?id=9564f777e20bab7dc29dbbb22d353cd1348b1ec2

www.codeaurora.org/security-bulletin/2018/09/04/september-2018-code-aurora-security-bulletin