What is the severity of CVE-2018-11288?

The severity of CVE-2018-11288 is categorized as high due to the potential for undefined behavior leading to a read outside intended memory regions.

How do I fix CVE-2018-11288?

To fix CVE-2018-11288, applying the latest software updates or firmware patches provided by the manufacturer is recommended.

What systems are affected by CVE-2018-11288?

CVE-2018-11288 affects various Qualcomm Snapdragon products including MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, and several SD series products.

Does CVE-2018-11288 have any known exploits?

As of now, there are no publicly disclosed exploits specifically targeting CVE-2018-11288.

How can users mitigate risks associated with CVE-2018-11288?

Users can mitigate risks related to CVE-2018-11288 by ensuring their devices are updated with the latest security patches released by Qualcomm.

Vulnerability/
CVE-2018-11288

high

7.8

CWE

129

4/9/2018

26/8/2024

CVE-2018-11288: Out-of-bounds Read

First published: Tue Sep 04 2018(Updated: )

Possible undefined behavior due to lack of size check in function for parameter segment_idx can lead to a read outside of the intended region in snapdragon automobile, snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SDX24, SXR1130

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
Android
Qualcomm MDM9206
Qualcomm MDM9206 firmware
Qualcomm MD9607 Firmware
Qualcomm MDM9607 firmware
Qualcomm MDM9650
Qualcomm MDM9650 firmware
Qualcomm MDM9655 firmware
Qualcomm MDM9655 firmware
qualcomm MSM8996AU firmware
Qualcomm MSM8996AU Firmware
Qualcomm SD210 Firmware
Qualcomm SD 210 Firmware
Qualcomm SD 212
Qualcomm SD 212 Firmware
Qualcomm SD205 Firmware
Qualcomm SD205 Firmware
Qualcomm SD410 Firmware
Qualcomm Snapdragon 410
Qualcomm SD412 Firmware
Qualcomm SD412
Qualcomm Snapdragon 712 Firmware
Qualcomm Snapdragon 712
qualcomm sdm710 firmware
Qualcomm Snapdragon 710
Qualcomm SDM670 Firmware
Qualcomm SDM670
Qualcomm SD820 Firmware
Qualcomm SD820 Firmware
Qualcomm SD820A Firmware
Qualcomm SD820A Firmware
Qualcomm SD835 Firmware
Qualcomm Snapdragon 835
Qualcomm SDA845 Firmware
Qualcomm SD845
Qualcomm SD850 Firmware
Qualcomm SD850
Qualcomm SDX24
Qualcomm SDX24
Qualcomm SXR1130
Qualcomm SXR1130 Firmware

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2018-11288?
The severity of CVE-2018-11288 is categorized as high due to the potential for undefined behavior leading to a read outside intended memory regions.
How do I fix CVE-2018-11288?
To fix CVE-2018-11288, applying the latest software updates or firmware patches provided by the manufacturer is recommended.
What systems are affected by CVE-2018-11288?
CVE-2018-11288 affects various Qualcomm Snapdragon products including MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, and several SD series products.
Does CVE-2018-11288 have any known exploits?
As of now, there are no publicly disclosed exploits specifically targeting CVE-2018-11288.
How can users mitigate risks associated with CVE-2018-11288?
Users can mitigate risks related to CVE-2018-11288 by ensuring their devices are updated with the latest security patches released by Qualcomm.

agent/type
agent/first-publish-date
agent/author
agent/severity
agent/weakness
agent/references
agent/description
agent/event
agent/last-modified-date
agent/source
agent/tags
agent/softwarecombine
collector/android-source
source/Android
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/nvd-index
vendor/google
canonical/android
vendor/qualcomm
canonical/qualcomm mdm9206
canonical/qualcomm mdm9206 firmware
canonical/qualcomm md9607 firmware
canonical/qualcomm mdm9607 firmware
canonical/qualcomm mdm9650
canonical/qualcomm mdm9650 firmware
canonical/qualcomm mdm9655 firmware
canonical/qualcomm msm8996au firmware
canonical/qualcomm sd210 firmware
canonical/qualcomm sd 210 firmware
canonical/qualcomm sd 212
canonical/qualcomm sd 212 firmware
canonical/qualcomm sd205 firmware
canonical/qualcomm sd410 firmware
canonical/qualcomm snapdragon 410
canonical/qualcomm sd412 firmware
canonical/qualcomm sd412
canonical/qualcomm snapdragon 712 firmware
canonical/qualcomm snapdragon 712
canonical/qualcomm sdm710 firmware
canonical/qualcomm snapdragon 710
canonical/qualcomm sdm670 firmware
canonical/qualcomm sdm670
canonical/qualcomm sd820 firmware
canonical/qualcomm sd820a firmware
canonical/qualcomm sd835 firmware
canonical/qualcomm snapdragon 835
canonical/qualcomm sda845 firmware
canonical/qualcomm sd845
canonical/qualcomm sd850 firmware
canonical/qualcomm sd850
canonical/qualcomm sdx24
canonical/qualcomm sxr1130
canonical/qualcomm sxr1130 firmware