CVE-2018-11301
CVE-2018-11301
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
18 set 2018Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check on buffer length while processing debug log event from firmware can lead to an integer overflow.
Produtos afetados
Qualcomm, Inc. · Android for MSM, Firefox OS for MSM, QRD AndroidReferências
https://source.android.com/security/bulletin/pixel/2018-09-01#qualcomm-componentshttps://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=31ad3a5a7458e60f5e0ba4f492cebe1f1bda0964https://www.codeaurora.org/security-bulletin/2018/09/04/september-2018-code-aurora-security-bulletin