CVE-2018-3624

Summary

CVE	CVE-2018-3624
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2018-04-05 16:29:00 UTC
Updated	2018-05-10 14:13:00 UTC
Description	Buffer overflow in ETWS processing module Intel XMM71xx, XMM72xx, XMM73xx, XMM74xx and Sofia 3G/R allows remote attacker to potentially execute arbitrary code via an adjacent network.

Risk And Classification

Problem Types: CWE-119

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Intel	2g Modem Firmware	-	All	All	All
Operating System	Intel	2g Modem Firmware	-	All	All	All
Hardware	Intel	Sofia 3g	-	All	All	All
Hardware	Intel	Sofia 3g	-	All	All	All
Hardware	Intel	Sofia 3g-r	-	All	All	All
Hardware	Intel	Sofia 3g-r	-	All	All	All
Hardware	Intel	Sofia 3g-r W	-	All	All	All
Hardware	Intel	Sofia 3g-r W	-	All	All	All
Hardware	Intel	Xmm71xx	-	All	All	All
Hardware	Intel	Xmm71xx	-	All	All	All
Hardware	Intel	Xmm72xx	-	All	All	All
Hardware	Intel	Xmm72xx	-	All	All	All
Hardware	Intel	Xmm73xx	-	All	All	All
Hardware	Intel	Xmm73xx	-	All	All	All
Hardware	Intel	Xmm74xx	-	All	All	All
Hardware	Intel	Xmm74xx	-	All	All	All

References

Reference	Source	Link	Tags
Intel® Product Security Center	CONFIRM	security-center.intel.com	Vendor Advisory
Intel 2G Modem \| ICS-CERT	MISC	ics-cert.us-cert.gov	Third Party Advisory, US Government Resource
Malformed Request	BID	www.securityfocus.com	Third Party Advisory, VDB Entry
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.