CVE-2018-13918: Buffer Overflow
First published: Mon Mar 04 2019(Updated: )
kernel could return a received message length higher than expected, which leads to buffer overflow in a subsequent operation and stops normal operation in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, in MDM9150, MDM9206, MDM9607, MDM9650, MSM8909W, QCS605, Qualcomm 215, SD 425, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 675, SD 712 / SD 710 / SD 670, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDM439, SDX24, SM7150
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Android | ||
| Qualcomm MDM9150 firmware | ||
| Qualcomm MDM9150 firmware | ||
| Qualcomm MDM9206 | ||
| Qualcomm MDM9206 firmware | ||
| Qualcomm MD9607 Firmware | ||
| Qualcomm MDM9607 firmware | ||
| Qualcomm MDM9650 | ||
| Qualcomm MDM9650 firmware | ||
| Qualcomm MSM8909W | ||
| Qualcomm Snapdragon 8909 | ||
| Qualcomm ZZ QCS605 firmware | ||
| Qualcomm QCS605 Firmware | ||
| Qualcomm 215 Firmware | ||
| Qualcomm 215 | ||
| Qualcomm SDR425 Firmware | ||
| Qualcomm Snapdragon 425 | ||
| Qualcomm SD 439 | ||
| Qualcomm SD 439 firmware | ||
| Qualcomm SDA429W Firmware | ||
| Qualcomm SD 429 Firmware | ||
| Qualcomm SDM450 Firmware | ||
| Qualcomm SDM450 | ||
| Qualcomm SD 625 Firmware | ||
| Qualcomm Snapdragon 625 | ||
| Qualcomm SD632 Firmware | ||
| Qualcomm SD 632 firmware | ||
| Qualcomm SD 675 Firmware | ||
| Qualcomm Snapdragon 675 | ||
| Qualcomm Snapdragon 712 Firmware | ||
| Qualcomm Snapdragon 712 | ||
| qualcomm sdm710 firmware | ||
| Qualcomm Snapdragon 710 | ||
| Qualcomm SDM670 Firmware | ||
| Qualcomm SDM670 | ||
| Qualcomm SD820A Firmware | ||
| Qualcomm SD820A Firmware | ||
| Qualcomm SD835 Firmware | ||
| Qualcomm Snapdragon 835 | ||
| Qualcomm SDA845 Firmware | ||
| Qualcomm SD845 | ||
| Qualcomm SD850 Firmware | ||
| Qualcomm SD850 | ||
| Qualcomm SD855 Firmware | ||
| Qualcomm SD855 Firmware | ||
| qualcomm SDM439 firmware | ||
| Qualcomm SDM439 Firmware | ||
| Qualcomm SDX24 | ||
| Qualcomm SDX24 | ||
| qualcomm SM7150 firmware | ||
| qualcomm SM7150 firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-13918?
CVE-2018-13918 is classified as a high severity vulnerability due to the potential for remote code execution and denial of service.
How do I fix CVE-2018-13918?
To fix CVE-2018-13918, users should update their Qualcomm firmware to the latest version that addresses this vulnerability.
What devices are affected by CVE-2018-13918?
CVE-2018-13918 affects various Qualcomm Snapdragon platforms, including Snapdragon Auto, Consumer IoT, Industrial IoT, Mobile, and Wearable devices.
Can CVE-2018-13918 lead to data breaches?
Yes, CVE-2018-13918 could potentially lead to data breaches if exploited, allowing attackers to gain unauthorized access to sensitive information.
Is there a workaround for CVE-2018-13918?
Currently, there are no official workarounds for CVE-2018-13918; updating the firmware is the recommended mitigation.
- agent/type
- agent/first-publish-date
- agent/references
- agent/severity
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/event
- agent/last-modified-date
- agent/source
- agent/weakness
- collector/android-source
- source/Android
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- vendor/google
- canonical/android
- vendor/qualcomm
- canonical/qualcomm mdm9150 firmware
- canonical/qualcomm mdm9206
- canonical/qualcomm mdm9206 firmware
- canonical/qualcomm md9607 firmware
- canonical/qualcomm mdm9607 firmware
- canonical/qualcomm mdm9650
- canonical/qualcomm mdm9650 firmware
- canonical/qualcomm msm8909w
- canonical/qualcomm snapdragon 8909
- canonical/qualcomm zz qcs605 firmware
- canonical/qualcomm qcs605 firmware
- canonical/qualcomm 215 firmware
- canonical/qualcomm 215
- canonical/qualcomm sdr425 firmware
- canonical/qualcomm snapdragon 425
- canonical/qualcomm sd 439
- canonical/qualcomm sd 439 firmware
- canonical/qualcomm sda429w firmware
- canonical/qualcomm sd 429 firmware
- canonical/qualcomm sdm450 firmware
- canonical/qualcomm sdm450
- canonical/qualcomm sd 625 firmware
- canonical/qualcomm snapdragon 625
- canonical/qualcomm sd632 firmware
- canonical/qualcomm sd 632 firmware
- canonical/qualcomm sd 675 firmware
- canonical/qualcomm snapdragon 675
- canonical/qualcomm snapdragon 712 firmware
- canonical/qualcomm snapdragon 712
- canonical/qualcomm sdm710 firmware
- canonical/qualcomm snapdragon 710
- canonical/qualcomm sdm670 firmware
- canonical/qualcomm sdm670
- canonical/qualcomm sd820a firmware
- canonical/qualcomm sd835 firmware
- canonical/qualcomm snapdragon 835
- canonical/qualcomm sda845 firmware
- canonical/qualcomm sd845
- canonical/qualcomm sd850 firmware
- canonical/qualcomm sd850
- canonical/qualcomm sd855 firmware
- canonical/qualcomm sdm439 firmware
- canonical/qualcomm sdx24
- canonical/qualcomm sm7150 firmware