Chipsets.org

Vulnerability

CVE-2018-11953

Component: WIFI

While processing ssid IE length from remote AP, possible out-of-bounds access may occur due to crafted ssid IE length in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCA6174A, QCA6574AU, QCA9377, QCA9379, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 650/52, SD 820, SD 820A, SDM439, SDX20

Impact

Severity (Manufact.)

N/A

Severity (NIST)

9.8

Severity (Android)

N/A

Chipsets

Devices

Affected Hardware

Name	Also known as	Manufacturer
QM215	Qualcomm 215	Qualcomm
SDM439	Snapdragon 439	Qualcomm
MSM8909w	Wear 2100 Wear 2500 Wear 3100	Qualcomm
MSM8996AU	Snapdragon 820A	Qualcomm

4 of 4 row(s) shown.

Rows per page

Page 1 of 1

Information reliability

The information on this website is intended to provide information on the big picture of chipset security and measure trends within the industry. Our information is obtained from several vantage points, checked for consistency, and automatically cross-referenced. However, this process may not always yield reliable information. Do not use the information on a particular vulnerability, chipset or device to verify your individual exposure in cases where inaccuracies are inacceptable, for instance to assess risks if you are a Politically Exposed Person.

Timeline

Introduced (est):

Jul 1, 2018

Reported:

Unknown

Advisory Published:

N/A

CVE Published:

May 24, 2019

Android Patch Level:

Apr 2019