CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-11863

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check of input received from firmware to calculate the length of WMA roam synch buffer can lead to buffer overwrite during memcpy.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.2%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-3.0/commit/?id=33abba90b5c570a8334110ff7e1f696908465fd3
https://www.codeaurora.org/security-bulletin/2018/09/04/september-2018-code-aurora-security-bulletin
https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-3.0/commit/?id=33abba90b5c570a8334110ff7e1f696908465fd3
https://www.codeaurora.org/security-bulletin/2018/09/04/september-2018-code-aurora-security-bulletin

Products affected by CVE-2018-11863

Google » Android » Version: N/A

cpe:2.3:o:google:android:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-11863

Products

Pricing

Contact Us