{ "name": "CVE-2018-13898", "CVE": [ [ "CVE-2018-13898", "Bulletin-CVE-2018-13898" ] ], "Coordinated_disclosure": "unknown", "Categories": [ "Qualcomm closed-source components" ], "Details": [ [ "Out-of-Bounds write due to incorrect array index check in PMIC in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX24, Snapdragon_High_Med_2016, SXR1130", "NIST-CVE-2018-13898" ] ], "Discovered_on": [], "Discovered_by": [ [ "derrek (@derrekr6)", "Discovery-CVE-2018-13898" ] ], "Submission": [ { "by": "dcc52", "on": "2019-07-24" } ], "Reported_on": [ [ "2019-05-01", "Bulletin-CVE-2018-13898" ] ], "Fixed_on": [], "Fix_released_on": [ [ "2019-05-05", "Bulletin-CVE-2018-13898" ] ], "Affected_versions": [], "Affected_devices": [], "Affected_versions_regexp": [ "" ], "Affected_manufacturers": [ [ "Qualcomm", "Bulletin-CVE-2018-13898" ] ], "Fixed_versions": [], "Fixed_versions_regexp": [ "" ], "references": { "A-119050181": {}, "NIST-CVE-2018-13898": { "url": "https://nvd.nist.gov/vuln/data-feeds" }, "Bulletin-CVE-2018-13898": { "url": "https://source.android.com/security/bulletin/2019-05-01.html" }, "Discovery-CVE-2018-13898": { "url": "https://source.android.com/security/overview/acknowledgements" } }, "Surface": [ "local", "app" ], "Vector": [ "memory-corruption" ], "Target": [ "system-component" ], "Channel": [ "app-execution" ], "Condition": [ "affected-app-installed" ], "Privilege": [ "control-hardware" ], "CWE": [ [ "CWE-787", "NIST-CVE-2018-13898" ] ] }