CVE-2018-5868

MITRE NVD CVE.ORG JSON API Print: PDF PDF

Summary

CVECVE-2018-5868
StatePUBLIC
Assigner[email protected]
Source PriorityCVE Program / NVD first with legacy fallback
Published2019-01-18 22:29:00 UTC
Updated2019-01-24 18:04:00 UTC
DescriptionLack of checking input size can lead to buffer overflow In WideVine in snapdragon automobile and snapdragon mobile in versions MSM8996AU, SD 425, SD 430, SD 450, SD 625, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SDA660, SDX24, SXR1130

Risk And Classification

Problem Types: CWE-119

NVD Known Affected Configurations (CPE 2.3)

TypeVendorProductVersionUpdateEditionLanguage
Hardware Qualcomm Msm8996au - All All All
Hardware Qualcomm Msm8996au - All All All
Operating System Qualcomm Msm8996au Firmware - All All All
Operating System Qualcomm Msm8996au Firmware - All All All
Hardware Qualcomm Sda660 - All All All
Hardware Qualcomm Sda660 - All All All
Operating System Qualcomm Sda660 Firmware - All All All
Operating System Qualcomm Sda660 Firmware - All All All
Hardware Qualcomm Sdx24 - All All All
Hardware Qualcomm Sdx24 - All All All
Operating System Qualcomm Sdx24 Firmware - All All All
Operating System Qualcomm Sdx24 Firmware - All All All
Hardware Qualcomm Sd 425 - All All All
Hardware Qualcomm Sd 425 - All All All
Operating System Qualcomm Sd 425 Firmware - All All All
Operating System Qualcomm Sd 425 Firmware - All All All
Hardware Qualcomm Sd 430 - All All All
Hardware Qualcomm Sd 430 - All All All
Operating System Qualcomm Sd 430 Firmware - All All All
Operating System Qualcomm Sd 430 Firmware - All All All
Hardware Qualcomm Sd 450 - All All All
Hardware Qualcomm Sd 450 - All All All
Operating System Qualcomm Sd 450 Firmware - All All All
Operating System Qualcomm Sd 450 Firmware - All All All
Hardware Qualcomm Sd 625 - All All All
Hardware Qualcomm Sd 625 - All All All
Operating System Qualcomm Sd 625 Firmware - All All All
Operating System Qualcomm Sd 625 Firmware - All All All
Hardware Qualcomm Sd 670 - All All All
Hardware Qualcomm Sd 670 - All All All
Operating System Qualcomm Sd 670 Firmware - All All All
Operating System Qualcomm Sd 670 Firmware - All All All
Hardware Qualcomm Sd 710 - All All All
Hardware Qualcomm Sd 710 - All All All
Operating System Qualcomm Sd 710 Firmware - All All All
Operating System Qualcomm Sd 710 Firmware - All All All
Hardware Qualcomm Sd 712 - All All All
Hardware Qualcomm Sd 712 - All All All
Operating System Qualcomm Sd 712 Firmware - All All All
Operating System Qualcomm Sd 712 Firmware - All All All
Hardware Qualcomm Sd 820 - All All All
Hardware Qualcomm Sd 820 - All All All
Hardware Qualcomm Sd 820a - All All All
Hardware Qualcomm Sd 820a - All All All
Operating System Qualcomm Sd 820a Firmware - All All All
Operating System Qualcomm Sd 820a Firmware - All All All
Operating System Qualcomm Sd 820 Firmware - All All All
Operating System Qualcomm Sd 820 Firmware - All All All
Hardware Qualcomm Sd 835 - All All All
Hardware Qualcomm Sd 835 - All All All
Operating System Qualcomm Sd 835 Firmware - All All All
Operating System Qualcomm Sd 835 Firmware - All All All
Hardware Qualcomm Sd 845 - All All All
Hardware Qualcomm Sd 845 - All All All
Operating System Qualcomm Sd 845 Firmware - All All All
Operating System Qualcomm Sd 845 Firmware - All All All
Hardware Qualcomm Sd 850 - All All All
Hardware Qualcomm Sd 850 - All All All
Operating System Qualcomm Sd 850 Firmware - All All All
Operating System Qualcomm Sd 850 Firmware - All All All
Hardware Qualcomm Sxr1130 - All All All
Hardware Qualcomm Sxr1130 - All All All
Operating System Qualcomm Sxr1130 Firmware - All All All
Operating System Qualcomm Sxr1130 Firmware - All All All

References

ReferenceSourceLinkTags
Bulletins | Qualcomm CONFIRM www.qualcomm.com Vendor Advisory
Qualcomm Closed-Source Components Multiple Unspecified Vulnerabilities BID www.securityfocus.com Third Party Advisory, VDB Entry
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report