PT-2019-9006 · Qualcomm · Mdm9206+29

Published

2019-04-04

·

Updated

2019-05-29

·

CVE-2018-13918

CVSS v2.0

7.2

High

VectorAV:L/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon Auto versions (affected versions not specified) Qualcomm Snapdragon Consumer IOT versions (affected versions not specified) Qualcomm Snapdragon Industrial IOT versions (affected versions not specified) Qualcomm Snapdragon Mobile versions (affected versions not specified) Qualcomm Snapdragon Wearables versions (affected versions not specified) Qualcomm MDM9150 version (affected versions not specified) Qualcomm MDM9206 version (affected versions not specified) Qualcomm MDM9607 version (affected versions not specified) Qualcomm MDM9650 version (affected versions not specified) Qualcomm MSM8909W version (affected versions not specified) Qualcomm QCS605 version (affected versions not specified) Qualcomm 215 version (affected versions not specified) Qualcomm SD 425 version (affected versions not specified) Qualcomm SD 439 / SD 429 version (affected versions not specified) Qualcomm SD 450 version (affected versions not specified) Qualcomm SD 625 version (affected versions not specified) Qualcomm SD 632 version (affected versions not specified) Qualcomm SD 675 version (affected versions not specified) Qualcomm SD 712 / SD 710 / SD 670 version (affected versions not specified) Qualcomm SD 820A version (affected versions not specified) Qualcomm SD 835 version (affected versions not specified) Qualcomm SD 845 / SD 850 version (affected versions not specified) Qualcomm SD 855 version (affected versions not specified) Qualcomm SDM439 version (affected versions not specified) Qualcomm SDX24 version (affected versions not specified) Qualcomm SM7150 version (affected versions not specified)
Description The kernel could return a received message length higher than expected, leading to a buffer overflow in a subsequent operation. This issue stops normal operation.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2018-13918

Affected Products

215
Mdm9150
Mdm9206
Mdm9607
Mdm9650
Msm8909W
Qcs605
Sd 425
Sd 429
Sd 439
Sd 450
Sd 625
Sd 632
Sd 670
Sd 675
Sd 710
Sd 712
Sd 820A
Sd 835
Sd 845
Sd 850
Sd 855
Sdm439
Sdx24
Sm7150
Snapdragon Auto
Snapdragon Consumer Iot
Snapdragon Industrial Iot
Snapdragon Mobile
Snapdragon Wearables