cve/2018/CVE-2018-11886.md

### [CVE-2018-11886](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11886)
![](https://img.shields.io/static/v1?label=Product&message=Android%20for%20MSM%2C%20Firefox%20OS%20for%20MSM%2C%20QRD%20Android&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Integer%20Overflow%20to%20Buffer%20Overflow%20in%20WLAN&color=brighgreen)

### Description

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check while calculating the MPDU data length will cause an integer overflow and then to buffer overflow in WLAN function.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/jiayy/android_vuln_poc-exp
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`### [CVE-2018-11886](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11886)`
			`![](https://img.shields.io/static/v1?label=Product&message=Android%20for%20MSM%2C%20Firefox%20OS%20for%20MSM%2C%20QRD%20Android&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=Integer%20Overflow%20to%20Buffer%20Overflow%20in%20WLAN&color=brighgreen)`

			`### Description`

			`In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check while calculating the MPDU data length will cause an integer overflow and then to buffer overflow in WLAN function.`

			`### POC`

			`#### Reference`
			`No PoCs from references.`

			`#### Github`
			`- https://github.com/jiayy/android_vuln_poc-exp`