7.8
CVE-2018-11823
- EPSS 0.02%
- Veröffentlicht 27.11.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 03:44:05
- Quelle product-security@qualcomm.com
- CVE-Watchlists
- Unerledigt
LoginIn all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, freeing device memory in driver probe failure will result in double free issue in power module.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.025 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 4.6 | 3.9 | 6.4 |
AV:L/AC:L/Au:N/C:P/I:P/A:P
|
CWE-415 Double Free
The product calls free() twice on the same memory address.