CVE-2018-11940
24.05.2019, 17:29
Lack of check in length before using memcpy in WLAN function can lead to OOB access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCS605, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130Enginsight
| Vendor | Product | Version |
|---|---|---|
| qualcomm | mdm9150_firmware | - |
| qualcomm | mdm9206_firmware | - |
| qualcomm | mdm9607_firmware | - |
| qualcomm | mdm9640_firmware | - |
| qualcomm | mdm9650_firmware | - |
| qualcomm | msm8996au_firmware | - |
| qualcomm | qcs605_firmware | - |
| qualcomm | sd_625_firmware | - |
| qualcomm | sd_636_firmware | - |
| qualcomm | sd_712_firmware | - |
| qualcomm | sd_710_firmware | - |
| qualcomm | sd_670_firmware | - |
| qualcomm | sd_820_firmware | - |
| qualcomm | sd_820a_firmware | - |
| qualcomm | sd_835_firmware | - |
| qualcomm | sd_845_firmware | - |
| qualcomm | sd_850_firmware | - |
| qualcomm | sd_855_firmware | - |
| qualcomm | sda660_firmware | - |
| qualcomm | sdm630_firmware | - |
| qualcomm | sdm660_firmware | - |
| qualcomm | sdx20_firmware | - |
| qualcomm | sdx24_firmware | - |
| qualcomm | sxr1130_firmware | - |
𝑥
= Vulnerable software versions
Common Weakness Enumeration