Unbounded Read Vulnerability in Snapdragon Platforms

Unbounded Read Vulnerability in Snapdragon Platforms

CVE-2018-11288 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Possible undefined behavior due to lack of size check in function for parameter segment_idx can lead to a read outside of the intended region in snapdragon automobile, snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SDX24, SXR1130

Learn more about our Mobile App Penetration Testing.