Vulnerabilities > CVE-2018-11993 - Out-of-bounds Write vulnerability in Qualcomm Mdm9206 Firmware and Mdm9607 Firmware

CVSS 8.8 - HIGH

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

low complexity

qualcomm

CWE-787

NVD

Published: 2019-01-18

Updated: 2024-11-21

Summary

Improper check while accessing the local memory stack on MQTT connection request can lead to buffer overflow in snapdragon wear in versions MDM9206, MDM9607

Vulnerable Configurations

Part	Description	Count
OS	Qualcomm Qualcomm Mdm9206 Firmware - Qualcomm Mdm9607 Firmware -	2
Hardware	Qualcomm Qualcomm Mdm9206 - Qualcomm Mdm9607 -	2

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.qualcomm.com/company/product-security/bulletins
https://www.qualcomm.com/company/product-security/bulletins