CVE-2018-11898
CVE-2018-11898
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
19 sep 2018Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing start bss request from upper layer, out of bounds read occurs if ssid length is greater than maximum.
Productos afectados
Qualcomm, Inc. · Android for MSM, Firefox OS for MSM, QRD AndroidReferencias
https://source.android.com/security/bulletin/2018-09-01#qualcomm-componentshttps://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-3.0/commit/?id=dc657f502adb3038784b7488d2f183ed31b6aac3https://www.codeaurora.org/security-bulletin/2018/09/04/september-2018-code-aurora-security-bulletin