Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In September 2018
CVE-2018-11868
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of length validation check for value received from firmware can lead to buffer overflow in nan response event handler.
CVSS Score
7.8
EPSS Score
0.0
Published
2018-09-18
CVE-2018-11836
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper length check can lead to out-of-bounds access in WLAN function.
CVSS Score
7.8
EPSS Score
0.0
Published
2018-09-18
CVE-2018-11840
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing the WLAN driver command ioctl a temporary buffer used to construct the reply message may be freed twice.
CVSS Score
7.8
EPSS Score
0.0
Published
2018-09-18
CVE-2018-11842
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, during wlan association, driver allocates memory. In case the mem allocation fails driver does a mem free though the memory was not allocated.
CVSS Score
7.8
EPSS Score
0.0
Published
2018-09-18
CVE-2018-11843
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack fo check on return value in WMA response handler can lead to potential use after free.
CVSS Score
7.8
EPSS Score
0.0
Published
2018-09-18
CVE-2018-11851
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check on input received to calculate the buffer length can lead to out of bound write to kernel stack.
CVSS Score
7.8
EPSS Score
0.0
Published
2018-09-18
CVE-2018-11302
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check of input received from userspace before copying into buffer can lead to potential array overflow in WLAN.
CVSS Score
7.8
EPSS Score
0.0
Published
2018-09-18
CVE-2018-11818
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, LUT configuration is passed down to driver from userspace via ioctl. Simultaneous update from userspace while kernel drivers are updating LUT registers can lead to race condition.
CVSS Score
7.0
EPSS Score
0.0
Published
2018-09-18
CVE-2018-11826
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check on integer overflow while calculating memory can lead to Buffer overflow in WLAN ext scan handler.
CVSS Score
7.8
EPSS Score
0.0
Published
2018-09-18
CVE-2018-11827
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper validation of array index in WMA roam synchronization handler can lead to OOB write.
CVSS Score
7.8
EPSS Score
0.0
Published
2018-09-18


Products
Pricing
Contact Us

Shodan ® - All rights reserved