CVE-2018-11940
published 2019-05-24CVE-2018-11940: Lack of check in length before using memcpy in WLAN function can lead to OOB access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon…
critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
Lack of check in length before using memcpy in WLAN function can lead to OOB access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCS605, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — |
Android
CVE-2018-11940: WLAN HOST
vendor_android·2019-04-01·CVSS 9.8
CVE-2018-11940 [CRITICAL] CVE-2018-11940: WLAN HOST
Android Security Bulletin 2019-04-01
CVE: CVE-2018-11940
Severity: CRITICAL
Type: N/A
Component: WLAN HOST
References: A-79377832
QC-CR#2254946
GHSA
GHSA-22qm-pq7c-f85x: Lack of check in length before using memcpy in WLAN function can lead to OOB access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, S
ghsa_unreviewed·2022-05-24
CVE-2018-11940 [CRITICAL] CWE-119 GHSA-22qm-pq7c-f85x: Lack of check in length before using memcpy in WLAN function can lead to OOB access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, S
Lack of check in length before using memcpy in WLAN function can lead to OOB access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCS605, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2019-05-24
Published