CVE-2018-5842

HIGH

Android - Arbitrary Memory Write via WLAN Firmware Data

Title source: llm
STIX 2.1

Description

An arbitrary address write can occur if a compromised WLAN firmware sends incorrect data to WLAN driver in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.

References (2)

Core 2

Scores

CVSS v3 7.8
EPSS 0.0017
EPSS Percentile 6.5%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (1)
google/android
Published Jun 12, 2018
Tracked Since Feb 18, 2026