CVE-2018-5868: Buffer Overflow
First published: Mon Dec 03 2018(Updated: )
Lack of checking input size can lead to buffer overflow In WideVine in snapdragon automobile and snapdragon mobile in versions MSM8996AU, SD 425, SD 430, SD 450, SD 625, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SDA660, SDX24, SXR1130
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Qualcomm MSM8996AU Firmware | ||
| Qualcomm MSM8996AU Firmware | ||
| qualcomm SD 425 firmware | ||
| qualcomm SD 425 | ||
| Qualcomm SD 430 firmware | ||
| Qualcomm SD 430 | ||
| Qualcomm SD 450 firmware | ||
| Qualcomm SD 450 | ||
| qualcomm SD 625 firmware | ||
| qualcomm SD 625 | ||
| qualcomm SD 712 firmware | ||
| qualcomm SD 712 | ||
| qualcomm SD 710 firmware | ||
| qualcomm SD 710 | ||
| qualcomm SD 670 firmware | ||
| qualcomm SD 670 | ||
| qualcomm SD 820 firmware | ||
| qualcomm SD 820 | ||
| qualcomm SD 820A firmware | ||
| qualcomm SD 820A | ||
| qualcomm SD 835 firmware | ||
| qualcomm SD 835 | ||
| qualcomm SD 845 firmware | ||
| qualcomm SD 845 | ||
| qualcomm SD 850 firmware | ||
| qualcomm SD 850 | ||
| qualcomm SDA660 firmware | ||
| qualcomm SDA660 | ||
| Qualcomm sdx24 firmware | ||
| Qualcomm sdx24 | ||
| Qualcomm SXR1130 Firmware | ||
| Qualcomm SXR1130 | ||
| Android |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-5868?
CVE-2018-5868 is classified as a critical vulnerability due to its potential to cause a buffer overflow in various Qualcomm Snapdragon chipsets.
How do I fix CVE-2018-5868?
The recommended fix for CVE-2018-5868 is to update the firmware of the affected Qualcomm Snapdragon devices to the latest version provided by the manufacturer.
Which devices are affected by CVE-2018-5868?
CVE-2018-5868 affects Qualcomm Snapdragon devices, including MSM8996AU, SD 425, SD 430, SD 450, SD 625, SD 712, SD 710, SD 670, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660, SDX24, and SXR1130.
What can happen if CVE-2018-5868 is exploited?
Exploitation of CVE-2018-5868 can lead to unauthorized code execution, system crashes, or a complete compromise of the affected devices.
Is CVE-2018-5868 a hardware vulnerability?
CVE-2018-5868 is categorized as a software vulnerability but is primarily related to the Qualcomm Snapdragon hardware architecture.
- agent/references
- agent/type
- agent/first-publish-date
- agent/severity
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/event
- agent/last-modified-date
- agent/source
- agent/weakness
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- collector/android-source
- source/Android
- agent/software-canonical-lookup
- vendor/qualcomm
- canonical/qualcomm msm8996au firmware
- canonical/qualcomm sd 425 firmware
- canonical/qualcomm sd 425
- canonical/qualcomm sd 430 firmware
- canonical/qualcomm sd 430
- canonical/qualcomm sd 450 firmware
- canonical/qualcomm sd 450
- canonical/qualcomm sd 625 firmware
- canonical/qualcomm sd 625
- canonical/qualcomm sd 712 firmware
- canonical/qualcomm sd 712
- canonical/qualcomm sd 710 firmware
- canonical/qualcomm sd 710
- canonical/qualcomm sd 670 firmware
- canonical/qualcomm sd 670
- canonical/qualcomm sd 820 firmware
- canonical/qualcomm sd 820
- canonical/qualcomm sd 820a firmware
- canonical/qualcomm sd 820a
- canonical/qualcomm sd 835 firmware
- canonical/qualcomm sd 835
- canonical/qualcomm sd 845 firmware
- canonical/qualcomm sd 845
- canonical/qualcomm sd 850 firmware
- canonical/qualcomm sd 850
- canonical/qualcomm sda660 firmware
- canonical/qualcomm sda660
- canonical/qualcomm sdx24 firmware
- canonical/qualcomm sdx24
- canonical/qualcomm sxr1130 firmware
- canonical/qualcomm sxr1130
- vendor/google
- canonical/android