CVE-2018-5891

CVE Database · CVE-2018-5891

CVE-2018-5891

· N/AModified

CVSS v3.1

N/A

EPSS

0.22%

Published

Jul 6, 2018

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

While processing modem SSR after IMS is registered, the IMS data daemon is restarted but the ipc_dataHandle is no longer available. Consequently, the DPL thread frees the internal memory for dataDHandle but the local variable pointer is not updated which can lead to a Use After Free condition in Snapdragon Mobile and Snapdragon Wear.

Weaknesses (CWE)

CWE-416

Affected Products (30)

qualcomm · msm8909w_firmwarevulnerable

qualcomm · msm8909w

qualcomm · msm8996au_firmwarevulnerable

qualcomm · msm8996au

qualcomm · sd_210_firmwarevulnerable

qualcomm · sd_210

qualcomm · sd_212_firmwarevulnerable

qualcomm · sd_212

qualcomm · sd_205_firmwarevulnerable

qualcomm · sd_205

qualcomm · sd_450_firmwarevulnerable

· sd_450

References (2)

https://www.qualcomm.com/company/product-security/bulletins

Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs