VYPR
Medium severity5.7NVD Advisory· Published Sep 18, 2018· Updated Jun 17, 2026

CVE-2018-11293

CVE-2018-11293

Description

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, in wma_ndp_confirm_event_handler and wma_ndp_indication_event_handler, ndp_cfg len and num_ndp_app_info is from fw. If they are not checked, it may cause buffer over-read once the value is too large.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Qualcomm, Inc./Android for MSM, Firefox OS for MSM, QRD Androidv5
    Range: All Android releases from CAF using the Linux kernel

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.