CVE-2018-11858
CVE-2018-11858
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
29 Oct 2018Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
When processing IE set command, buffer overwrite may occur due to lack of input validation of the IE length in Snapdragon Mobile in version SD 835, SD 845, SD 850.
Affected products
Qualcomm, Inc. · Snapdragon Mobile