CVE-2018-11898
CVE-2018-11898
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
19 set 2018Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing start bss request from upper layer, out of bounds read occurs if ssid length is greater than maximum.
Produtos afetados
Qualcomm, Inc. · Android for MSM, Firefox OS for MSM, QRD AndroidReferências
https://source.android.com/security/bulletin/2018-09-01#qualcomm-componentshttps://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-3.0/commit/?id=dc657f502adb3038784b7488d2f183ed31b6aac3https://www.codeaurora.org/security-bulletin/2018/09/04/september-2018-code-aurora-security-bulletin