cvedb.io
CVE-2018-11858
HIGH · CVSS 7.8
EPSS exploitation probability: 0%
Published 2018-10-29T18:29:01.213 · Last modified 2026-06-17T01:36:43.083

Summary

When processing IE set command, buffer overwrite may occur due to lack of input validation of the IE length in Snapdragon Mobile in version SD 835, SD 845, SD 850.

Affected products

qualcomm — sd_835_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when qualcomm ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.