Unknown
CVE-2018-11936
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
Unknown
(0 users assessed)
Unknown
(0 users assessed)Unknown
Unknown
Unknown
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
Index of array is processed in a wrong way inside a while loop and result in invalid index (-1 or something else) leads to out of bound memory access. in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA9377, QCA9379, QCA9886, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 820, SD 820A, SD 835, SDX20, SDX24, Snapdragon_High_Med_2016
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- mdm9206 firmware -,
- mdm9607 firmware -,
- mdm9640 firmware -,
- mdm9650 firmware -,
- msm8996au firmware -,
- qca6174a firmware -,
- qca6574 firmware -,
- qca6574au firmware -,
- qca6584 firmware -,
- qca6584au firmware -,
- qca9377 firmware -,
- qca9379 firmware -,
- qca9886 firmware -,
- sd 205 firmware -,
- sd 210 firmware -,
- sd 212 firmware -,
- sd 425 firmware -,
- sd 427 firmware -,
- sd 430 firmware -,
- sd 435 firmware -,
- sd 450 firmware -,
- sd 625 firmware -,
- sd 820 firmware -,
- sd 820a firmware -,
- sd 835 firmware -,
- sdx20 firmware -,
- sdx24 firmware -,
- snapdragon high med 2016 firmware -
References
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
