CVE-2018-11830
Last modified
CVE-2018-11830 is a vulnerability of currently unknown severity. Improper input validation in QCPE create function may lead to integer overflow in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, SD 410/12, SD 820A. EPSS estimates a 0.21% chance of exploitation in the next 30 days.
Description
Improper input validation in QCPE create function may lead to integer overflow in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, SD 410/12, SD 820A
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Mdm9206 Firmware | All versions |
| Qualcomm | Mdm9607 Firmware | All versions |
| Qualcomm | Mdm9650 Firmware | All versions |
| Qualcomm | Mdm9655 Firmware | All versions |
| Qualcomm | Msm8996au Firmware | All versions |
| Qualcomm | Sd 410 Firmware | All versions |
| Qualcomm | Sd 412 Firmware | All versions |
| Qualcomm | Sd 820a Firmware | All versions |
References
- https://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
- https://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2018-11830?
How severe is CVE-2018-11830?
How do I fix CVE-2018-11830?
Are you affected by CVE-2018-11830?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST