EUVD-2018-3929

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Buffer over read due to lack of input validation in various Snapdragon products and models.

Reporter	Title	Published	Views	Family All 5
CVE	CVE-2018-11937	24 May 201916:35	–	cve
Cvelist	CVE-2018-11937	24 May 201916:35	–	cvelist
NVD	CVE-2018-11937	24 May 201917:29	–	nvd
Prion	Input validation	24 May 201917:29	–	prion
RedhatCVE	CVE-2018-11937	22 May 202513:00	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "bd59d37f-6aca-30bf-985a-993450c4f0a9",
        "vendor": {
          "name": "Qualcomm, Inc."
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "316ebe78-7c68-3292-9577-076179e65e7b",
        "product": {
          "name": "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile"
        },
        "product_version": "MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6574AU, QCS605, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM630, SDM660, SDX20, SDX24, SM7150"
      }
    ]
  }
]

Source	Link
codeaurora	www.codeaurora.org/security-bulletin/2019/04/01/april-2019-code-aurora-security-bulletin
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

9.5High risk

Vulners AI Score9.5

CVSS 39.8

CVSS 210

EPSS0.00266