CVE-2018-11265
CVE-2018-11265
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
18 sep 2018Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, possible buffer overflow while incrementing the log_buf of type uint64_t in memcpy function, since the log_buf pointer can access the memory beyond the size to store the data after pointer increment.
Productos afectados
Qualcomm, Inc. · Android for MSM, Firefox OS for MSM, QRD Android