| ID |
CVE-2018-11851
|
| Summary |
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check on input received to calculate the buffer length can lead to out of bound write to kernel stack. |
| References |
|
| Vulnerable Configurations |
|
| CVSS |
| Base: | 7.2 (as of 18-04-2019 - 13:01) |
| Impact: | |
| Exploitability: | |
|
| CWE |
CWE-787 |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| LOCAL |
LOW |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| COMPLETE |
COMPLETE |
COMPLETE |
|
| cvss-vector
via4
|
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
| refmap
via4
|
|
| Last major update |
18-04-2019 - 13:01 |
| Published |
18-09-2018 - 18:29 |
| Last modified |
18-04-2019 - 13:01 |
