Vulnerability Details : CVE-2018-14745
Buffer overflow in prot_get_ring_space in the bcmdhd4358 Wi-Fi driver on the Samsung Galaxy S6 SM-G920F G920FXXU5EQH7 allows an attacker (who has obtained code execution on the Wi-Fi chip) to overwrite kernel memory due to improper validation of the ring buffer read pointer. The Samsung ID is SVE-2018-12029.
Vulnerability category: Overflow
Products affected by CVE-2018-14745
- cpe:2.3:o:samsung:galaxy_s6_firmware:g920fxxu5eqh7:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2018-14745
0.34%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 71 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-14745
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.8
|
MEDIUM | AV:A/AC:L/Au:N/C:P/I:P/A:P |
6.5
|
6.4
|
NIST | |
8.8
|
HIGH | CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
2.8
|
5.9
|
NIST |
CWE ids for CVE-2018-14745
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2018-14745
-
https://pastebin.com/tmFrECnZ
SVE-2018-12029 - Pastebin.comExploit;Third Party Advisory
-
https://security.samsungmobile.com/securityUpdate.smsb
Android Security Updates Details | Samsung Mobile SecurityVendor Advisory
-
https://github.com/securesystemslab/periscope/blob/master/bugs-found/CVE-2018-14745.md
periscope/CVE-2018-14745.md at master · securesystemslab/periscope · GitHubExploit;Third Party Advisory
Jump to