Improper NULL Termination Vulnerability in Snapdragon Devices

Improper NULL Termination Vulnerability in Snapdragon Devices

CVE-2018-5877 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

In the device programmer target-side code for firehose, a string may not be properly NULL terminated can lead to a incorrect buffer size in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 600, SD 820, SD 820A, SD 835, SDA660, SDX20.

Learn more about our Mobile App Penetration Testing.