CVE-2018-11293

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, in wma_ndp_confirm_event_handler and wma_ndp_indication_event_handler, ndp_cfg len and num_ndp_app_info is from fw. If they are not checked, it may cause buffer over-read once the value is too large.
Configurations

Configuration 1 (hide)

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-09-18 18:29

Updated : 2023-12-10 12:44


NVD link : CVE-2018-11293

Mitre link : CVE-2018-11293

CVE.ORG link : CVE-2018-11293


JSON object : View

Products Affected

google

  • android
CWE
CWE-125

Out-of-bounds Read