← Back to CVEs
CVE-2018-11871
N/ADescription
Buffer overwrite can happen in WLAN function while processing set pdev parameter command due to lack of input validation in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version IPQ4019, IPQ8064, IPQ8074, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA9377, QCA9378, QCA9379, QCA9531, QCA9558, QCA9563, QCA9880, QCA9886, QCA9980, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 600, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660, SDM630, SDM632, SDM636, SDM660, SDM710, SDX20, Snapdragon_High_Med_2016.
CVE Details
CVSS v3.1 ScoreN/A
Published10/29/2018
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
qualcomm:ipq4019qualcomm:ipq4019_firmwarequalcomm:ipq8064qualcomm:ipq8064_firmwarequalcomm:ipq8074qualcomm:ipq8074_firmwarequalcomm:mdm9206qualcomm:mdm9206_firmwarequalcomm:mdm9607qualcomm:mdm9607_firmwarequalcomm:mdm9635mqualcomm:mdm9635m_firmwarequalcomm:mdm9640qualcomm:mdm9640_firmwarequalcomm:mdm9650qualcomm:mdm9650_firmwarequalcomm:msm8996auqualcomm:msm8996au_firmwarequalcomm:qca6174aqualcomm:qca6174a_firmwarequalcomm:qca6564qualcomm:qca6564_firmwarequalcomm:qca6574qualcomm:qca6574_firmwarequalcomm:qca6574auqualcomm:qca6574au_firmwarequalcomm:qca6584qualcomm:qca6584_firmwarequalcomm:qca6584auqualcomm:qca6584au_firmwarequalcomm:qca9377qualcomm:qca9377_firmwarequalcomm:qca9378qualcomm:qca9378_firmwarequalcomm:qca9379qualcomm:qca9379_firmwarequalcomm:qca9531qualcomm:qca9531_firmwarequalcomm:qca9558qualcomm:qca9558_firmwarequalcomm:qca9563qualcomm:qca9563_firmwarequalcomm:qca9880qualcomm:qca9880_firmwarequalcomm:qca9886qualcomm:qca9886_firmwarequalcomm:qca9980qualcomm:qca9980_firmwarequalcomm:sd_205qualcomm:sd_205_firmwarequalcomm:sd_210qualcomm:sd_210_firmwarequalcomm:sd_212qualcomm:sd_212_firmwarequalcomm:sd_425qualcomm:sd_425_firmwarequalcomm:sd_427qualcomm:sd_427_firmwarequalcomm:sd_430qualcomm:sd_430_firmwarequalcomm:sd_435qualcomm:sd_435_firmwarequalcomm:sd_450qualcomm:sd_450_firmwarequalcomm:sd_600qualcomm:sd_600_firmwarequalcomm:sd_625qualcomm:sd_625_firmwarequalcomm:sd_650qualcomm:sd_650_firmwarequalcomm:sd_652qualcomm:sd_652_firmwarequalcomm:sd_820qualcomm:sd_820_firmwarequalcomm:sd_820aqualcomm:sd_820a_firmwarequalcomm:sd_835qualcomm:sd_835_firmwarequalcomm:sd_845qualcomm:sd_845_firmwarequalcomm:sd_850qualcomm:sd_850_firmwarequalcomm:sda660qualcomm:sda660_firmwarequalcomm:sdm630qualcomm:sdm630_firmwarequalcomm:sdm632qualcomm:sdm632_firmwarequalcomm:sdm636qualcomm:sdm636_firmwarequalcomm:sdm660qualcomm:sdm660_firmwarequalcomm:sdm710qualcomm:sdm710_firmwarequalcomm:sdx20qualcomm:sdx20_firmwarequalcomm:snapdragon_high_med_2016qualcomm:snapdragon_high_med_2016_firmware
Weaknesses (CWE)
CWE-119
References
http://www.securityfocus.com/bid/107681(product-security@qualcomm.com)
https://www.qualcomm.com/company/product-security/bulletins(product-security@qualcomm.com)
http://www.securityfocus.com/bid/107681(af854a3a-2127-422b-91ae-364da2661108)
https://www.qualcomm.com/company/product-security/bulletins(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.