CVE-2018-11909

Name of the Vulnerable Software and Affected Versions Android for MSM (affected versions not specified) Firefox OS for MSM (affected versions not specified) QRD Android (affected versions not specified)

Description The issue is related to improper access control in Android releases that use the Linux kernel. This can lead to the execution of device nodes and executables from the /cache/ directory, presenting a potential problem.

Recommendations For Android for MSM, restrict access to the /cache/ directory until a fix is available. For Firefox OS for MSM, consider implementing proper access controls to prevent unauthorized execution from the /cache/ directory. For QRD Android, limit the execution of device nodes and executables from the /cache/ directory as a temporary mitigation measure. At the moment, there is no information about a newer version that contains a fix for this vulnerability.