CVE-2018-5883

CVE Database · CVE-2018-5883

CVE-2018-5883

· N/AModified

CVSS v3.1

N/A

EPSS

0.23%

Published

Jun 14, 2019

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Buffer overflow in WLAN driver event handlers due to improper validation of array index in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCS405, QCS605, SD 636, SD 675, SD 730, SD 820A, SD 835, SD 855, SDA660, SDM630, SDM660, SDX20, SDX24

Weaknesses (CWE)

CWE-129

Affected Products (36)

qualcomm · mdm9206_firmwarevulnerable

qualcomm · mdm9206

qualcomm · mdm9607_firmwarevulnerable

qualcomm · mdm9607

qualcomm · mdm9640_firmwarevulnerable

qualcomm · mdm9640

qualcomm · mdm9650_firmwarevulnerable

qualcomm · mdm9650

qualcomm · msm8996au_firmwarevulnerable

qualcomm · msm8996au

qualcomm · qcs405_firmwarevulnerable

· qcs405

References (2)

https://www.codeaurora.org/security-bulletin/2019/05/06/may-2019-code-aurora-security-bulletin

Third Party Advisory

https://www.codeaurora.org/security-bulletin/2019/05/06/may-2019-code-aurora-security-bulletin

Third Party Advisory

KEV Catalog EPSS Scores Vendors All CVEs