CVE-2017-11035

HIGH

Android for MSM - Out-of-bounds Read in WEXT Callback Initialization

Title source: llm
STIX 2.1

Description

In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, possible buffer overflow or information leak in the functions "sme_set_ft_ies" and "csr_roam_issue_ft_preauth_req" due to incorrect initialization of WEXT callbacks and lack of the checks for buffer size.

References (2)

Core 2
Core References
Patch, Vendor Advisory x_refsource_confirm
https://source.android.com/security/bulletin/pixel/2017-11-01

Scores

CVSS v3 7.8
EPSS 0.0016
EPSS Percentile 5.5%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-125
Status published
Products (2)
google/android
Qualcomm, Inc./Android for MSM, Firefox OS for MSM, QRD Android All Android releases from CAF using the Linux kernel
Published Nov 16, 2017
Tracked Since Feb 18, 2026