CVE-2018-11816

nvd nist

Published: Nov 26, 2024Modified: Feb 6, 2025

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: product-security@qualcomm.com (Secondary)

Description

Crafted Binder Request Causes Heap UAF in MediaServer

Affected (14)

Products: Qualcomm: 9206 Lte Modem Firmware, Apq8016 Firmware, Apq8017 Firmware, Apq8039 Firmware, Apq8052 Firmware, Apq8056 Firmware, Apq8076 Firmware, Aqt1000 Firmware, Ar6003 Firmware, Sd660 Firmware, Sd670 Firmware, Sd820 Firmware, Sd821 Firmware, Sd835 Firmware

Qualcomm

14 products

9206 Lte Modem Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm 9206 Lte Modem Firmware	All versions

Running on/with	Platform Versions
Qualcomm 9206 Lte Modem	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Apq8016 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Apq8016	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Apq8017 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Apq8017	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Apq8039 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Apq8039	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Apq8052 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Apq8052	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Apq8056 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Apq8056	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Apq8076 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Apq8076	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Aqt1000 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Aqt1000	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Ar6003 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Ar6003	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sd660 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sd660	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sd670 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sd670	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sd820 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sd820	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sd821 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sd821	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sd835 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sd835	All versions

Related CWEs

CWE-416

Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

References (1)

https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2018-bulletin.html

Source: product-security@qualcomm.com

Vendor Advisory

Timeline

No history available yet.