Executive Summary

Informations
NameCVE-2018-11899First vendor Publication2019-02-11
VendorCveLast vendor Modification2019-02-14

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score4.6Attack RangeLocal
Cvss Impact Score6.4Attack ComplexityLow
Cvss Expoit Score3.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

While processing radio connection status change events, Radio index is not properly validated in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile and Snapdragon Voice & Music in versions MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11899

CWE : Common Weakness Enumeration

%idName
100 %CWE-129Improper Validation of Array Index

CPE : Common Platform Enumeration

TypeDescriptionCount
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Hardware1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1

Sources (Detail)

SourceUrl
CONFIRM https://www.qualcomm.com/company/product-security/bulletins

Alert History

If you want to see full details history, please login or register.
0
1
DateInformations
2019-02-14 21:19:38
  • Multiple Updates
2019-02-11 21:19:16
  • First insertion