Details of VAR-201906-0813

ID

VAR-201906-0813

CVE

CVE-2018-11947

TITLE

plural Snapdragon Double release vulnerability in products

Trust: 0.8

sources: JVNDB: JVNDB-2018-015661

DESCRIPTION

The txrx stats req might be double freed in the pdev detach when the host driver is unloading in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8064, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574AU, QCA9377, QCA9379, QCA9558, QCA9880, QCA9886, QCA9980, QCS405, QCS605, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM630, SDM660, SDX20, SDX24. plural Snapdragon The product contains a double release vulnerability.Information may be obtained. Qualcomm MDM9206 and other products are products of Qualcomm. The MDM9206 is a central processing unit (CPU) product. The MDM9607 is a central processing unit (CPU) product. The MDM9640 is a central processing unit (CPU) product. WLAN is one of the wireless LAN components. An information disclosure vulnerability exists in WLANs in several Qualcomm products. The vulnerability stems from errors in the configuration of the network system or product during operation. An unauthorized attacker can exploit the vulnerability to obtain sensitive information about the affected component. This vulnerability stems from improper management of system resources (such as memory, disk space, files, etc.) by network systems or products

Trust: 2.25

sources: NVD: CVE-2018-11947 // JVNDB: JVNDB-2018-015661 // CNVD: CNVD-2019-18600 // VULHUB: VHN-121857

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2019-18600

AFFECTED PRODUCTS

vendor:	qualcomm	model:	mdm9607	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	mdm9206	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	msm8996au	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	mdm9650	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	mdm9640	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	ipq8064	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	mdm9150	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	qca6174a	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	qca6574au	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	qca9377	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	qca9379	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdx24	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs405	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 427	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sda660	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 710	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 425	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 675	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 820a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9607	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca9377	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 730	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9206	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm660	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 450	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9640	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9150	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 435	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 712	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca9980	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 625	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	msm8996au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs605	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 205	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 212	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca9880	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 835	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	ipq8064	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca9886	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9650	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 850	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm630	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca9558	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6574au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 845	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6174a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 670	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdx20	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 855	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 430	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 210	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 636	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd	scope:	eq	version:	845	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	835	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	210	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	850	Trust: 0.6
vendor:	qualcomm	model:	qca9379	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	qcs605	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	625	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	636	Trust: 0.6
vendor:	qualcomm	model:	sd 820a	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	855	Trust: 0.6
vendor:	qualcomm	model:	sda660	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sdm630	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sdm660	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sdx20	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	qca9558	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	qca9880	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	qca9886	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	qca9980	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	qcs405	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	212	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	205	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	425	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	427	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	430	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	435	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	450	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	675	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	712	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	710	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	670	Trust: 0.6
vendor:	qualcomm	model:	sd	scope:	eq	version:	730	Trust: 0.6
vendor:	qualcomm	model:	sdx24	scope:	-	version:	-	Trust: 0.6

sources: CNVD: CNVD-2019-18600 // JVNDB: JVNDB-2018-015661 // NVD: CVE-2018-11947

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2018-11947
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2018-11947
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2019-18600
value:	LOW
Trust: 0.6
CNNVD:	CNNVD-201906-614
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-121857
value:	LOW
Trust: 0.1

nvd@nist.gov:	CVE-2018-11947
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2019-18600
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-121857
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2018-11947
baseSeverity:	MEDIUM
baseScore:	5.5
vectorString:	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	1.8
impactScore:	3.6
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2019-18600 // VULHUB: VHN-121857 // JVNDB: JVNDB-2018-015661 // CNNVD: CNNVD-201906-614 // NVD: CVE-2018-11947

PROBLEMTYPE DATA

problemtype:

CWE-415

Trust: 1.9

sources: VULHUB: VHN-121857 // JVNDB: JVNDB-2018-015661 // NVD: CVE-2018-11947

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201906-614

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-201906-614

CONFIGURATIONS

sources: JVNDB: JVNDB-2018-015661

PATCH

title:	May 2019 Code Aurora Security Bulletin (CVE-2018-11947)	url:	https://www.codeaurora.org/security-bulletin/2019/05/06/may-2019-code-aurora-security-bulletin	Trust: 0.8
title:	Patches for WLAN Information Disclosure Vulnerabilities in Multiple Qualcomm Products	url:	https://www.cnvd.org.cn/patchInfo/show/163917	Trust: 0.6
title:	Multiple Qualcomm product WLAN Remediation of resource management error vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=93830	Trust: 0.6

sources: CNVD: CNVD-2019-18600 // JVNDB: JVNDB-2018-015661 // CNNVD: CNNVD-201906-614

EXTERNAL IDS

db:	NVD	id:	CVE-2018-11947	Trust: 3.1
db:	JVNDB	id:	JVNDB-2018-015661	Trust: 0.8
db:	CNNVD	id:	CNNVD-201906-614	Trust: 0.7
db:	CNVD	id:	CNVD-2019-18600	Trust: 0.6
db:	VULHUB	id:	VHN-121857	Trust: 0.1

sources: CNVD: CNVD-2019-18600 // VULHUB: VHN-121857 // JVNDB: JVNDB-2018-015661 // CNNVD: CNNVD-201906-614 // NVD: CVE-2018-11947

REFERENCES

url:	https://nvd.nist.gov/vuln/detail/cve-2018-11947	Trust: 2.0
url:	https://www.codeaurora.org/security-bulletin/2019/05/06/may-2019-code-aurora-security-bulletin	Trust: 1.7
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-11947	Trust: 0.8
url:	https://vigilance.fr/vulnerability/google-android-os-multiple-vulnerabilities-30243	Trust: 0.6

sources: CNVD: CNVD-2019-18600 // VULHUB: VHN-121857 // JVNDB: JVNDB-2018-015661 // CNNVD: CNNVD-201906-614 // NVD: CVE-2018-11947

SOURCES

db:	CNVD	id:	CNVD-2019-18600
db:	VULHUB	id:	VHN-121857
db:	JVNDB	id:	JVNDB-2018-015661
db:	CNNVD	id:	CNNVD-201906-614
db:	NVD	id:	CVE-2018-11947

LAST UPDATE DATE

2024-11-23T21:59:51.410000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2019-18600	date:	2019-06-19T00:00:00
db:	VULHUB	id:	VHN-121857	date:	2019-06-18T00:00:00
db:	JVNDB	id:	JVNDB-2018-015661	date:	2019-06-21T00:00:00
db:	CNNVD	id:	CNNVD-201906-614	date:	2019-09-05T00:00:00
db:	NVD	id:	CVE-2018-11947	date:	2024-11-21T03:44:18.487

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2019-18600	date:	2019-06-19T00:00:00
db:	VULHUB	id:	VHN-121857	date:	2019-06-14T00:00:00
db:	JVNDB	id:	JVNDB-2018-015661	date:	2019-06-21T00:00:00
db:	CNNVD	id:	CNNVD-201906-614	date:	2019-06-14T00:00:00
db:	NVD	id:	CVE-2018-11947	date:	2019-06-14T17:29:00.533