CVE-2018-11907

Name of the Vulnerable Software and Affected Versions Android for MSM (affected versions not specified) Firefox OS for MSM (affected versions not specified) QRD Android (affected versions not specified)

Description The issue is related to improper access control in Android releases that use the Linux kernel. This can lead to unauthorized access to device nodes and executables located in the /firmware/ directory, presenting a potential problem.

Recommendations For Android for MSM, restrict access to the /firmware/ directory until a fix is available. For Firefox OS for MSM, consider implementing proper access controls for device nodes and executables in the /firmware/ directory. For QRD Android, limit the execution of files from the /firmware/ directory to prevent potential issues. At the moment, there is no information about a newer version that contains a fix for this vulnerability.