What is the severity of CVE-2018-11866?

CVE-2018-11866 has been classified as a high severity vulnerability due to the potential for integer overflow in the WLAN subsystem.

How do I fix CVE-2018-11866?

To mitigate CVE-2018-11866, you should apply the latest firmware updates provided by Qualcomm for the affected Snapdragon Mobile and Wear products.

Which devices are affected by CVE-2018-11866?

CVE-2018-11866 affects various Qualcomm Snapdragon processors, including models like IPQ8074, MDM9206, MDM9607, and several SD series.

What type of vulnerability is CVE-2018-11866?

CVE-2018-11866 is classified as an integer overflow vulnerability that can occur when calculating internal structure sizes.

Can CVE-2018-11866 lead to denial of service?

Yes, CVE-2018-11866 can potentially lead to denial of service conditions due to improper handling of input lengths.

Vulnerability/
CVE-2018-11866

high

7.8

CWE

190 119

4/9/2018

29/10/2018

26/8/2024

CVE-2018-11866: Integer Overflow

First published: Tue Sep 04 2018(Updated: )

Integer overflow may happen in WLAN when calculating an internal structure size due to lack of validation of the input length in Snapdragon Mobile, Snapdragon Wear in version IPQ8074, MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 835, SD 845, SD 850, SDA660, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, SDM710, Snapdragon_High_Med_2016.

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
Android
qualcomm ipq8074 firmware
Qualcomm IPQ8074A
Qualcomm MDM9206
Qualcomm MDM9206 firmware
Qualcomm MD9607 Firmware
Qualcomm MDM9607 firmware
Qualcomm MDM9650
Qualcomm MDM9650 firmware
Qualcomm SD210 Firmware
Qualcomm SD 210 Firmware
Qualcomm SD 212
Qualcomm SD 212 Firmware
Qualcomm 205 Firmware
Qualcomm SD205 Firmware
Qualcomm SDR425 Firmware
Qualcomm Snapdragon 425
Qualcomm SD427 Firmware
Qualcomm SD 427 firmware
Qualcomm SD 430 Firmware
Qualcomm SD 430 Firmware
qualcomm sd435 firmware
Qualcomm Snapdragon 435
Qualcomm SDM450 Firmware
Qualcomm SDM450
Qualcomm SD 625 Firmware
Qualcomm Snapdragon 625
Qualcomm SD835 Firmware
Qualcomm Snapdragon 835
Qualcomm SDA845 Firmware
Qualcomm SD845
Qualcomm SD850 Firmware
Qualcomm SD850
Qualcomm SDA660
Qualcomm SDA660
Qualcomm SDM429W
Qualcomm SD429
Qualcomm SDM439 Firmware
Qualcomm SDM439 Firmware
Qualcomm SDM630
Qualcomm SDM630 Firmware
Qualcomm SDM632 Firmware
Qualcomm SDM632 Firmware
Qualcomm SD 636 Firmware
Qualcomm SDM636 Firmware
Qualcomm SD660 Firmware
Qualcomm Snapdragon 660
Qualcomm SD 710 Firmware
Qualcomm Snapdragon 710
Qualcomm Snapdragon High Med 2016
Qualcomm Snapdragon

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2018-11866?
CVE-2018-11866 has been classified as a high severity vulnerability due to the potential for integer overflow in the WLAN subsystem.
How do I fix CVE-2018-11866?
To mitigate CVE-2018-11866, you should apply the latest firmware updates provided by Qualcomm for the affected Snapdragon Mobile and Wear products.
Which devices are affected by CVE-2018-11866?
CVE-2018-11866 affects various Qualcomm Snapdragon processors, including models like IPQ8074, MDM9206, MDM9607, and several SD series.
What type of vulnerability is CVE-2018-11866?
CVE-2018-11866 is classified as an integer overflow vulnerability that can occur when calculating internal structure sizes.
Can CVE-2018-11866 lead to denial of service?
Yes, CVE-2018-11866 can potentially lead to denial of service conditions due to improper handling of input lengths.

agent/type
agent/first-publish-date
agent/references
agent/severity
agent/author
agent/description
collector/mitre-cve
source/MITRE
agent/weakness
agent/event
agent/last-modified-date
agent/source
collector/android-source
source/Android
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/softwarecombine
agent/tags
collector/nvd-index
vendor/google
canonical/android
vendor/qualcomm
canonical/qualcomm ipq8074 firmware
canonical/qualcomm ipq8074a
canonical/qualcomm mdm9206
canonical/qualcomm mdm9206 firmware
canonical/qualcomm md9607 firmware
canonical/qualcomm mdm9607 firmware
canonical/qualcomm mdm9650
canonical/qualcomm mdm9650 firmware
canonical/qualcomm sd210 firmware
canonical/qualcomm sd 210 firmware
canonical/qualcomm sd 212
canonical/qualcomm sd 212 firmware
canonical/qualcomm 205 firmware
canonical/qualcomm sd205 firmware
canonical/qualcomm sdr425 firmware
canonical/qualcomm snapdragon 425
canonical/qualcomm sd427 firmware
canonical/qualcomm sd 427 firmware
canonical/qualcomm sd 430 firmware
canonical/qualcomm sd435 firmware
canonical/qualcomm snapdragon 435
canonical/qualcomm sdm450 firmware
canonical/qualcomm sdm450
canonical/qualcomm sd 625 firmware
canonical/qualcomm snapdragon 625
canonical/qualcomm sd835 firmware
canonical/qualcomm snapdragon 835
canonical/qualcomm sda845 firmware
canonical/qualcomm sd845
canonical/qualcomm sd850 firmware
canonical/qualcomm sd850
canonical/qualcomm sda660
canonical/qualcomm sdm429w
canonical/qualcomm sd429
canonical/qualcomm sdm439 firmware
canonical/qualcomm sdm630
canonical/qualcomm sdm630 firmware
canonical/qualcomm sdm632 firmware
canonical/qualcomm sd 636 firmware
canonical/qualcomm sdm636 firmware
canonical/qualcomm sd660 firmware
canonical/qualcomm snapdragon 660
canonical/qualcomm sd 710 firmware
canonical/qualcomm snapdragon 710
canonical/qualcomm snapdragon high med 2016
canonical/qualcomm snapdragon