CVE-2018-11832

HIGH

Android - Heap Overflow in PMIC Function via Unvalidated Input Size

Title source: llm
STIX 2.1

Description

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of input size validation before copying to buffer in PMIC function can lead to heap overflow.

References (2)

Core 2

Scores

CVSS v3 7.8
EPSS 0.0019
EPSS Percentile 9.1%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (1)
google/android
Published Sep 18, 2018
Tracked Since Feb 18, 2026