{ "CVE_data_meta" : { "ASSIGNER" : "product-security@qualcomm.com", "ID" : "CVE-2018-5868", "STATE" : "PUBLIC" }, "affects" : { "vendor" : { "vendor_data" : [ { "product" : { "product_data" : [ { "product_name" : "Snapdragon Automobile, Snapdragon Mobile", "version" : { "version_data" : [ { "version_value" : "MSM8996AU, SD 425, SD 430, SD 450, SD 625, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SDA660, SDX24, SXR1130" } ] } } ] }, "vendor_name" : "Qualcomm, Inc." } ] } }, "data_format" : "MITRE", "data_type" : "CVE", "data_version" : "4.0", "description" : { "description_data" : [ { "lang" : "eng", "value" : "Lack of checking input size can lead to buffer overflow In WideVine in snapdragon automobile and snapdragon mobile in versions MSM8996AU, SD 425, SD 430, SD 450, SD 625, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SDA660, SDX24, SXR1130" } ] }, "problemtype" : { "problemtype_data" : [ { "description" : [ { "lang" : "eng", "value" : "Buffer Copy without Checking Size of Input in TrustZone." } ] } ] }, "references" : { "reference_data" : [ { "name" : "https://www.qualcomm.com/company/product-security/bulletins", "refsource" : "CONFIRM", "url" : "https://www.qualcomm.com/company/product-security/bulletins" }, { "name" : "106128", "refsource" : "BID", "url" : "http://www.securityfocus.com/bid/106128" } ] } }