Use After Free Vulnerability in Snapdragon Mobile and Snapdragon Wear
CVE-2018-5891 · MEDIUM Severity
AV:L/AC:L/AU:N/C:P/I:P/A:P
While processing modem SSR after IMS is registered, the IMS data daemon is restarted but the ipc_dataHandle is no longer available. Consequently, the DPL thread frees the internal memory for dataDHandle but the local variable pointer is not updated which can lead to a Use After Free condition in Snapdragon Mobile and Snapdragon Wear.
Learn more about our Internal Network Penetration Testing.