7.8

CVE-2018-11816

Crafted Binder Request Causes Heap UAF in MediaServer

Data is provided by the National Vulnerability Database (NVD)
Qualcomm9206 Lte Modem Firmware Version-
   Qualcomm9206 Lte Modem Version-
QualcommApq8016 Firmware Version-
   QualcommApq8016 Version-
QualcommApq8017 Firmware Version-
   QualcommApq8017 Version-
QualcommApq8039 Firmware Version-
   QualcommApq8039 Version-
QualcommApq8052 Firmware Version-
   QualcommApq8052 Version-
QualcommApq8056 Firmware Version-
   QualcommApq8056 Version-
QualcommApq8076 Firmware Version-
   QualcommApq8076 Version-
QualcommAqt1000 Firmware Version-
   QualcommAqt1000 Version-
QualcommAr6003 Firmware Version-
   QualcommAr6003 Version-
QualcommSd660 Firmware Version-
   QualcommSd660 Version-
QualcommSd670 Firmware Version-
   QualcommSd670 Version-
QualcommSd820 Firmware Version-
   QualcommSd820 Version-
QualcommSd821 Firmware Version-
   QualcommSd821 Version-
QualcommSd835 Firmware Version-
   QualcommSd835 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.03% 0.051
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
product-security@qualcomm.com 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.