CVE-2018-5862
Description
In __wlan_hdd_cfg80211_vendor_scan() in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, when SCAN_SSIDS and QCA_WLAN_VENDOR_ATTR_SCAN_FREQUENCIES are parsed, a buffer overwrite can potentially occur.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A buffer overwrite in the WLAN HDD vendor scan handler on Android devices using CAF Linux kernel could lead to kernel memory corruption.
Vulnerability
In __wlan_hdd_cfg80211_vendor_scan(), a buffer overwrite can occur when parsing SCAN_SSIDS and QCA_WLAN_VENDOR_ATTR_SCAN_FREQUENCIES attributes. This affects all Android releases from CAF (Code Aurora Forum) using the Linux kernel before the security patch level 2018-07-05 [1]. The vulnerability resides in the WLAN driver's handling of vendor-specific scan commands.
Exploitation
An attacker with the ability to issue vendor-specific scan commands to the WLAN driver—for example, from a privileged process or a crafted application—can trigger the buffer overwrite. No user interaction is required beyond the attacker's ability to send the malicious command.
Impact
Successful exploitation results in a kernel memory corruption, which could allow an attacker to execute arbitrary code with kernel privileges. This could lead to full compromise of the device's confidentiality, integrity, and availability.
Mitigation
The issue is fixed in the Android security patch level 2018-07-05 [1]. Users should ensure their devices have received this update. No workaround is available; updating to the latest security patch is the recommended mitigation.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Qualcomm, Inc./Android for MSM, Firefox OS for MSM, QRD Androidv5Range: All Android releases from CAF using the Linux kernel
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- source.android.com/security/bulletin/pixel/2018-07-01mitrex_refsource_CONFIRM
- source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-3.0/commit/mitrex_refsource_CONFIRM
- www.codeaurora.org/security-bulletin/2018/07/02/july-2018-code-aurora-security-bulletinmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.