CVE-2018-11914

Name of the Vulnerable Software and Affected Versions Android for MSM (affected versions not specified) Firefox OS for MSM (affected versions not specified) QRD Android (affected versions not specified)

Description The issue is related to improper access control in Android releases that use the Linux kernel. This can potentially allow device nodes and executables to be run from the /systemrw/ directory, presenting a security risk.

Recommendations For Android for MSM, restrict access to the /systemrw/ directory until a fix is available. For Firefox OS for MSM, consider disabling executable execution from the /systemrw/ directory as a temporary workaround. For QRD Android, avoid running device nodes and executables from the /systemrw/ directory to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.