CVE-2018-11968

CVE Database · CVE-2018-11968

CVE-2018-11968

· N/AModified

CVSS v3.1

N/A

EPSS

0.21%

Published

May 24, 2019

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Improper check before assigning value can lead to integer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ8064, IPQ8074, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA4020, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9558, QCA9563, QCA9880, QCA9886, QCA9980, QCN5502, QCS605, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 600, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX20, SDX24, SM7150, Snapdragon_High_Med_2016, SXR1130

Weaknesses (CWE)

CWE-190

Affected Products (112)

qualcomm · ipq4019_firmwarevulnerable

qualcomm · ipq4019

qualcomm · ipq8064_firmwarevulnerable

qualcomm · ipq8064

qualcomm · ipq8074_firmwarevulnerable

qualcomm · ipq8074

qualcomm · mdm9206_firmwarevulnerable

qualcomm · mdm9206

qualcomm · mdm9607_firmwarevulnerable

qualcomm · mdm9607

qualcomm · mdm9640_firmwarevulnerable

· mdm9640

References (2)

https://www.qualcomm.com/company/product-security/bulletins#_CVE-2018-11968

Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins#_CVE-2018-11968

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs