High severity7.3NVD Advisory· Published Apr 3, 2018· Updated Jun 17, 2026
CVE-2018-5821
CVE-2018-5821
Description
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, in function wma_wow_wakeup_host_event(), wake_info->vdev_id is received from FW and is used directly as array index to access wma->interfaces whose max index should be (max_bssid-1). If wake_info->vdev_id is greater than or equal to max_bssid, an out-of-bounds read occurs.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- Range: < 2018-04-05
- Range: < 2018-04-05
- Range: < 2018-04-05
- Qualcomm, Inc./Android for MSM, Firefox OS for MSM, QRD Androidv5Range: All Android releases from CAF using the Linux kernel
Patches
Vulnerability mechanics
References
1- source.android.com/security/bulletin/pixel/2018-04-01nvdVendor Advisory
News mentions
0No linked articles in our index yet.