CVE-2018-13888: Buffer Overflow
First published: Mon Jan 07 2019(Updated: )
There is potential for memory corruption in the RIL daemon due to de reference of memory outside the allocated array length in RIL in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in versions MDM9206, MDM9607, MDM9635M, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDM439, SDM630, SDM660, ZZ_QCS605.
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Google Android | ||
| Qualcomm Mdm9206 Firmware | ||
| Qualcomm Mdm9206 | ||
| Qualcomm Mdm9607 Firmware | ||
| Qualcomm Mdm9607 | ||
| Google Android | ||
| Qualcomm Mdm9635m | ||
| Qualcomm Mdm9650 Firmware | ||
| Qualcomm Mdm9650 | ||
| Qualcomm Msm8909w Firmware | ||
| Qualcomm Msm8909w | ||
| Qualcomm Sd 210 Firmware | ||
| Qualcomm Sd 210 | ||
| Qualcomm Sd 212 Firmware | ||
| Qualcomm Sd 212 | ||
| Qualcomm Sd 205 Firmware | ||
| Qualcomm Sd 205 | ||
| Qualcomm Sd 425 Firmware | ||
| Qualcomm Sd 425 | ||
| Qualcomm Sd 427 Firmware | ||
| Qualcomm Sd 427 | ||
| Qualcomm Sd 430 Firmware | ||
| Qualcomm Sd 430 | ||
| Qualcomm Sd 435 Firmware | ||
| Qualcomm Sd 435 | ||
| Qualcomm Sd 439 Firmware | ||
| Qualcomm Sd 439 | ||
| Qualcomm Sd 429 Firmware | ||
| Qualcomm Sd 429 | ||
| Qualcomm Sd 450 Firmware | ||
| Qualcomm Sd 450 | ||
| Qualcomm Sd 625 Firmware | ||
| Qualcomm Sd 625 | ||
| Qualcomm Sd 636 Firmware | ||
| Qualcomm Sd 636 | ||
| Qualcomm Sd 650 Firmware | ||
| Qualcomm Sd 650 | ||
| Qualcomm Sd 652 Firmware | ||
| Qualcomm Sd 652 | ||
| Qualcomm Sd 675 Firmware | ||
| Qualcomm Sd 675 | ||
| Qualcomm Sd 712 Firmware | ||
| Qualcomm Sd 712 | ||
| Qualcomm Sd 710 Firmware | ||
| Qualcomm Sd 710 | ||
| Qualcomm Sd 670 Firmware | ||
| Qualcomm Sd 670 | ||
| Qualcomm Sd 820a Firmware | ||
| Qualcomm Sd 820a | ||
| Qualcomm Sd 835 Firmware | ||
| Qualcomm Sd 835 | ||
| Qualcomm Sd 845 Firmware | ||
| Qualcomm Sd 845 | ||
| Qualcomm Sd 850 Firmware | ||
| Qualcomm Sd 850 | ||
| Qualcomm Sd 855 Firmware | ||
| Qualcomm Sd 855 | ||
| Qualcomm Sdm439 Firmware | ||
| Qualcomm Sdm439 | ||
| Qualcomm Sdm630 Firmware | ||
| Qualcomm Sdm630 | ||
| Qualcomm Sdm660 Firmware | ||
| Qualcomm Sdm660 | ||
| Qualcomm Zz Qcs605 Firmware | ||
| Qualcomm Zz Qcs605 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-13888?
The severity of CVE-2018-13888 is high, with a severity value of 7.8.
What is the affected software for CVE-2018-13888?
The affected software for CVE-2018-13888 includes Google Android, Qualcomm Mdm9206 Firmware, Qualcomm Mdm9607, Qualcomm Mdm9635m, Qualcomm Mdm9650, and MSM8909W.
How can I fix CVE-2018-13888?
To fix CVE-2018-13888, it is recommended to apply the relevant security patches or updates provided by Google and Qualcomm.
Where can I find more information about CVE-2018-13888?
You can find more information about CVE-2018-13888 on the links provided by Qualcomm and the Android Security Bulletin.
What is the Common Weakness Enumeration (CWE) for CVE-2018-13888?
The Common Weakness Enumeration (CWE) for CVE-2018-13888 is CWE-119.
- agent/references
- agent/type
- agent/first-publish-date
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/android-source
- source/Android
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- vendor/qualcomm
- canonical/qualcomm mdm9206 firmware
- canonical/qualcomm mdm9206
- canonical/qualcomm mdm9607 firmware
- canonical/qualcomm mdm9607
- canonical/google android
- canonical/qualcomm mdm9635m
- canonical/qualcomm mdm9650 firmware
- canonical/qualcomm mdm9650
- canonical/qualcomm msm8909w firmware
- canonical/qualcomm msm8909w
- canonical/qualcomm sd 210 firmware
- canonical/qualcomm sd 210
- canonical/qualcomm sd 212 firmware
- canonical/qualcomm sd 212
- canonical/qualcomm sd 205 firmware
- canonical/qualcomm sd 205
- canonical/qualcomm sd 425 firmware
- canonical/qualcomm sd 425
- canonical/qualcomm sd 427 firmware
- canonical/qualcomm sd 427
- canonical/qualcomm sd 430 firmware
- canonical/qualcomm sd 430
- canonical/qualcomm sd 435 firmware
- canonical/qualcomm sd 435
- canonical/qualcomm sd 439 firmware
- canonical/qualcomm sd 439
- canonical/qualcomm sd 429 firmware
- canonical/qualcomm sd 429
- canonical/qualcomm sd 450 firmware
- canonical/qualcomm sd 450
- canonical/qualcomm sd 625 firmware
- canonical/qualcomm sd 625
- canonical/qualcomm sd 636 firmware
- canonical/qualcomm sd 636
- canonical/qualcomm sd 650 firmware
- canonical/qualcomm sd 650
- canonical/qualcomm sd 652 firmware
- canonical/qualcomm sd 652
- canonical/qualcomm sd 675 firmware
- canonical/qualcomm sd 675
- canonical/qualcomm sd 712 firmware
- canonical/qualcomm sd 712
- canonical/qualcomm sd 710 firmware
- canonical/qualcomm sd 710
- canonical/qualcomm sd 670 firmware
- canonical/qualcomm sd 670
- canonical/qualcomm sd 820a firmware
- canonical/qualcomm sd 820a
- canonical/qualcomm sd 835 firmware
- canonical/qualcomm sd 835
- canonical/qualcomm sd 845 firmware
- canonical/qualcomm sd 845
- canonical/qualcomm sd 850 firmware
- canonical/qualcomm sd 850
- canonical/qualcomm sd 855 firmware
- canonical/qualcomm sd 855
- canonical/qualcomm sdm439 firmware
- canonical/qualcomm sdm439
- canonical/qualcomm sdm630 firmware
- canonical/qualcomm sdm630
- canonical/qualcomm sdm660 firmware
- canonical/qualcomm sdm660
- canonical/qualcomm zz qcs605 firmware
- canonical/qualcomm zz qcs605
- vendor/google