CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-11020

kernel/omap/drivers/rpmsg/rpmsg_omx.c in the kernel component in Amazon Kindle Fire HD(3rd) Fire OS 4.5.5.3 allows attackers to inject a crafted argument via the argument of an ioctl on device file /dev/rpmsg-omx1 with the command 3221772291, and cause a kernel crash.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.019

EPSS Ranking 82.3%

CVSS Severity

CVSS v3 Score 4.4

CVSS v2 Score 4.9

References

https://github.com/datadancer/HIAFuzz/blob/master/CVE-2018-11020.md
https://github.com/datadancer/HIAFuzz/blob/master/CVE-Advisory.md
https://github.com/datadancer/HIAFuzz/blob/master/CVE-2018-11020.md
https://github.com/datadancer/HIAFuzz/blob/master/CVE-Advisory.md

Products affected by CVE-2018-11020

Amazon » Kindle Fire Hd » Version: 3

cpe:2.3:h:amazon:kindle_fire_hd:3
Amazon » Fire Os » Version: 4.5.5.3

cpe:2.3:o:amazon:fire_os:4.5.5.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-11020

Products

Pricing

Contact Us