| ID |
CVE-2018-11300
|
| Summary |
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, callback executed from the other thread has freed memory which is also used in wlan function and may result in to a "Use after free" scenario. |
| References |
|
| Vulnerable Configurations |
|
| CVSS |
| Base: | 4.6 (as of 09-11-2018 - 17:35) |
| Impact: | |
| Exploitability: | |
|
| CWE |
CWE-416 |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| LOCAL |
LOW |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| PARTIAL |
PARTIAL |
PARTIAL |
|
| cvss-vector
via4
|
AV:L/AC:L/Au:N/C:P/I:P/A:P
|
| refmap
via4
|
|
| Last major update |
09-11-2018 - 17:35 |
| Published |
18-09-2018 - 18:29 |
| Last modified |
09-11-2018 - 17:35 |
