PT-2018-10856 · Qualcomm · Snapdragon Mobile

Published

2018-10-29

Updated

2019-04-25

CVE-2018-11856

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon Mobile versions SD 835 through SD 850

Description The issue arises from improper input validation, which results in a buffer overwrite. This occurs in the WLAN function responsible for handling WMI commands.

Recommendations For versions SD 835 through SD 850, update to a version that includes proper input validation to prevent buffer overwrites in the WLAN function.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2018-11856

Affected Products

Snapdragon Mobile

PT-2018-10856 · Qualcomm · Snapdragon Mobile

CVE-2018-11856

Weakness Enumeration

Related Identifiers

Affected Products

References · 3