|
248081
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack fo check on return value in WMA response handler can lead to potential use after free.
|
CWE-416
Use After Free
|
CVE-2018-11843
|
2024-11-21 12:44 |
2018-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248082
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, during wlan association, driver allocates memory. In case the mem allocation fails driver d…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-11842
|
2024-11-21 12:44 |
2018-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248083
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing the WLAN driver command ioctl a temporary buffer used to construct the rep…
|
CWE-415
Double Free
|
CVE-2018-11840
|
2024-11-21 12:44 |
2018-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248084
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper length check can lead to out-of-bounds access in WLAN function.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-11836
|
2024-11-21 12:44 |
2018-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248085
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of input size validation before copying to buffer in PMIC function can lead to heap ov…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-11832
|
2024-11-21 12:44 |
2018-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248086
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper validation of array index in WMA roam synchronization handler can lead to OOB writ…
|
CWE-129
Improper Validation of Array Index
|
CVE-2018-11827
|
2024-11-21 12:44 |
2018-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248087
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check on integer overflow while calculating memory can lead to Buffer overflow in W…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2018-11826
|
2024-11-21 12:44 |
2018-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248088
|
7.0 |
HIGH
Local
|
google
|
android
|
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, LUT configuration is passed down to driver from userspace via ioctl. Simultaneous update fr…
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2018-11818
|
2024-11-21 12:44 |
2018-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248089
|
8.1 |
HIGH
Network
|
apache
|
karaf
|
In Apache Karaf version prior to 3.0.9, 4.0.9, 4.1.1, when the webconsole feature is installed in Karaf, it is available at .../system/console and requires authentication to access it. One part of th…
|
CWE-287
Improper Authentication
|
CVE-2018-11787
|
2024-11-21 12:44 |
2018-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248090
|
8.8 |
HIGH
Network
|
apache
|
karaf
|
In Apache Karaf prior to 4.2.0 release, if the sshd service in Karaf is left on so an administrator can manage the running instance, any user with rights to the Karaf console can pivot and read/write…
|
CWE-269
Improper Privilege Management
|
CVE-2018-11786
|
2024-11-21 12:44 |
2018-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
