CVE-2018-5911

HIGH

Qualcomm Multiple Chipsets Firmware - Buffer Overflow in WLAN Function

Title source: llm

Description

Buffer overflow in WLAN function due to improper check of buffer size before copying in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCS605, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820A, SD 855, SDM630, SDM660, SDX20, SDX24

References (1)

Core 1

Core References

Third Party Advisory x_refsource_confirm

https://www.codeaurora.org/security-bulletin/2019/05/06/may-2019-code-aurora-security-bulletin

Scores

CVSS v3 7.8

EPSS 0.0010

EPSS Percentile 27.9%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-119

Status published

Products (20)

qualcomm/mdm9150_firmware

qualcomm/mdm9206_firmware

qualcomm/mdm9607_firmware

qualcomm/mdm9640_firmware

qualcomm/mdm9650_firmware

qualcomm/msm8996au_firmware

qualcomm/qcs605_firmware

qualcomm/sd_625_firmware

qualcomm/sd_636_firmware

qualcomm/sd_670_firmware

... and 10 more

Published Jun 14, 2019

Tracked Since Feb 18, 2026