CVE-2018-5893
Description
While processing a message from firmware in htt_t2h_msg_handler_fast() in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05, a buffer overwrite can occur.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Buffer overwrite in Qualcomm Wi-Fi driver's htt_t2h_msg_handler_fast() allows remote code execution via crafted firmware message.
Vulnerability
A buffer overwrite vulnerability exists in the htt_t2h_msg_handler_fast() function within the Qualcomm Wi-Fi driver used in Android devices from CAF (Code Aurora Forum). This occurs while processing a message from firmware. Affected versions include Android for MSM, Firefox OS for MSM, and QRD Android before the security patch level 2018-06-05. The vulnerability is present in the Linux kernel component.
Exploitation
An attacker can exploit this vulnerability by sending a specially crafted message from the firmware to the host driver. The attacker would need to have control over the firmware or be able to inject malicious messages into the communication channel. No authentication is required if the attacker can influence the firmware message. The exact sequence involves triggering the htt_t2h_msg_handler_fast() function with a crafted payload that causes a buffer overwrite.
Impact
Successful exploitation could lead to arbitrary code execution in the context of the kernel, potentially allowing the attacker to gain elevated privileges and compromise the device. The impact includes complete compromise of confidentiality, integrity, and availability.
Mitigation
The fix is included in the Android security patch level 2018-06-05, as part of the Pixel/Nexus Security Bulletin June 2018 [1]. Users should ensure their devices receive the latest security updates. No workaround is available; updating to the patched version is the only mitigation.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Qualcomm, Inc./Android for MSM, Firefox OS for MSM, QRD Androidv5Range: All Android releases from CAF using the Linux kernel
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- source.android.com/security/bulletin/pixel/2018-06-01mitrex_refsource_CONFIRM
- source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-3.0/commit/mitrex_refsource_CONFIRM
- www.codeaurora.org/security-bulletin/2018/07/02/july-2018-code-aurora-security-bulletinmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.