What is the severity of CVE-2018-11305?

CVE-2018-11305 has been classified with a high severity level due to the potential for exploitation through a Use After Free condition.

How do I fix CVE-2018-11305?

To fix CVE-2018-11305, users should update their device's firmware to the latest version released by Qualcomm or their device manufacturer.

Which devices are affected by CVE-2018-11305?

CVE-2018-11305 affects various Qualcomm chipsets, including MDM9206, MDM9607, MDM9640, MDM9650, and several Snapdragon series processors.

What are the potential risks of CVE-2018-11305?

Exploitation of CVE-2018-11305 could lead to unauthorized access or control over affected devices, potentially compromising user data.

Is it safe to use devices with CVE-2018-11305 vulnerability?

Until patches are applied, using affected devices poses security risks and is not recommended.

Vulnerability/
CVE-2018-11305

high

7.8

CWE

416

6/8/2018

26/8/2024

CVE-2018-11305: Use After Free

First published: Mon Aug 06 2018(Updated: )

When a series of FDAL messages are sent to the modem, a Use After Free condition can occur in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SDA660, SDX20.

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
Google Android
Qualcomm MDM9206 firmware
Qualcomm MDM9206
Qualcomm MDM9607 firmware
Qualcomm MDM9607
qualcomm mdm9640 firmware
qualcomm MDM9640
Qualcomm MDM9650 firmware
Qualcomm MDM9650
Qualcomm MSM8909W
Qualcomm MSM8909W
Qualcomm MSM8996AU Firmware
Qualcomm MSM8996AU Firmware
qualcomm SD 210 firmware
qualcomm SD 210
qualcomm SD 212 firmware
qualcomm SD 212
qualcomm SD 205 firmware
qualcomm SD 205
qualcomm SD 425 firmware
qualcomm SD 425
Qualcomm SD 430 firmware
Qualcomm SD 430
Qualcomm SD 450 firmware
Qualcomm SD 450
qualcomm sd 615 firmware
qualcomm sd 615
qualcomm sd 616 firmware
qualcomm sd 616
qualcomm sd 415 firmware
qualcomm sd 415
qualcomm sd 617 firmware
qualcomm sd 617
qualcomm SD 625 firmware
qualcomm SD 625
qualcomm sd 650 firmware
qualcomm sd 650
qualcomm sd 652 firmware
qualcomm sd 652
qualcomm SD 820 firmware
qualcomm SD 820
qualcomm SD 820A firmware
qualcomm SD 820A
qualcomm SD 835 firmware
qualcomm SD 835
qualcomm SD 845 firmware
qualcomm SD 845
qualcomm SDA660 firmware
qualcomm SDA660
Qualcomm SDX20 Firmware
Qualcomm SDX20 Firmware

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2018-11305?
CVE-2018-11305 has been classified with a high severity level due to the potential for exploitation through a Use After Free condition.
How do I fix CVE-2018-11305?
To fix CVE-2018-11305, users should update their device's firmware to the latest version released by Qualcomm or their device manufacturer.
Which devices are affected by CVE-2018-11305?
CVE-2018-11305 affects various Qualcomm chipsets, including MDM9206, MDM9607, MDM9640, MDM9650, and several Snapdragon series processors.
What are the potential risks of CVE-2018-11305?
Exploitation of CVE-2018-11305 could lead to unauthorized access or control over affected devices, potentially compromising user data.
Is it safe to use devices with CVE-2018-11305 vulnerability?
Until patches are applied, using affected devices poses security risks and is not recommended.

Frequently Asked Questions

What is the severity of CVE-2018-11305?
CVE-2018-11305 has been classified with a high severity level due to the potential for exploitation through a Use After Free condition.
How do I fix CVE-2018-11305?
To fix CVE-2018-11305, users should update their device's firmware to the latest version released by Qualcomm or their device manufacturer.
Which devices are affected by CVE-2018-11305?
CVE-2018-11305 affects various Qualcomm chipsets, including MDM9206, MDM9607, MDM9640, MDM9650, and several Snapdragon series processors.
What are the potential risks of CVE-2018-11305?
Exploitation of CVE-2018-11305 could lead to unauthorized access or control over affected devices, potentially compromising user data.
Is it safe to use devices with CVE-2018-11305 vulnerability?
Until patches are applied, using affected devices poses security risks and is not recommended.

CVE-2018-11305: Use After Free

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2018-11305?

How do I fix CVE-2018-11305?

Which devices are affected by CVE-2018-11305?

What are the potential risks of CVE-2018-11305?

Is it safe to use devices with CVE-2018-11305 vulnerability?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2018-11305?

How do I fix CVE-2018-11305?

Which devices are affected by CVE-2018-11305?

What are the potential risks of CVE-2018-11305?

Is it safe to use devices with CVE-2018-11305 vulnerability?