CVE-2018-5846

Name of the Vulnerable Software and Affected Versions Android versions prior to a fixed version (affected versions not specified)

Description A Use After Free condition can occur in the IPA driver whenever the IPA IOCTLs IPA IOC NOTIFY WAN UPSTREAM ROUTE ADD, IPA IOC NOTIFY WAN UPSTREAM ROUTE DEL, IPA IOC NOTIFY WAN EMBMS CONNECTED are called. This issue is related to the Qualcomm Data Network Stack & Connectivity component in the Android operating system from the CAF repository. The exploitation of this issue may allow a remote attacker to elevate their privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.