CVE-2018-3574

EPSS 0.05% · P15 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-3574

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, userspace can request ION cache maintenance on a secure ION buffer for which the ION_FLAG_SECURE ion flag is not set and cause the kernel to attempt to perform cache maintenance on memory which does not belong to HLOS.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Android Kernel 输入验证错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Android是美国谷歌（Google）和开放手持设备联盟（简称OHA）的一套以Linux为基础的开源操作系统。Kernel是其中的一个系统内核组件。 Android中的Kernel存在输入验证错误漏洞。本地攻击者可通过发送特制的请求利用该漏洞绕过安全限制。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Qualcomm, Inc.	Android for MSM, Firefox OS for MSM, QRD Android	All Android releases from CAF using the Linux kernel	-

II. Public POCs for CVE-2018-3574

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-3574

请登录查看更多情报信息。

https://source.codeaurora.org/quic/la/kernel/msm-4.4/commit/?id=09874396dfbf546e5a628d810fcf5ea51a4d5785x_refsource_CONFIRM
https://source.codeaurora.org/quic/la/kernel/msm-4.9/commit/?id=53261410da625aaa2e070555aaa150a8533e5be4x_refsource_CONFIRM
https://support.blackberry.com/kb/articleDetail?language=en_US&articleNumber=000049462x_refsource_CONFIRM
https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=3286b75d91519073d2f20bee85f22e294d5f1a18x_refsource_CONFIRM
https://www.codeaurora.org/security-bulletin/2018/09/04/september-2018-code-aurora-security-bulletinx_refsource_CONFIRM
https://nvd.nist.gov/vuln/detail/CVE-2018-3574

Same Patch Batch · Qualcomm, Inc. · 2018-09-19 · 13 CVEs total

CVE-2018-11878		Android WLAN 缓冲区错误漏洞
CVE-2018-11883		Android WLAN 安全漏洞
CVE-2018-11886		Android WLAN 数字错误漏洞
CVE-2018-11891		Android 输入验证错误漏洞
CVE-2018-11894		Android WLAN 安全漏洞
CVE-2018-11895		Android WLAN 缓冲区错误漏洞
CVE-2018-11897		Android WLAN 缓冲区错误漏洞
CVE-2018-11898		Android Qualcomm WLAN Host 缓冲区错误漏洞
CVE-2018-11902		Android WLAN 安全漏洞
CVE-2018-11903		Android WLAN 安全漏洞
CVE-2018-11904		Android WLAN 安全漏洞
CVE-2018-3573		Android Boot 安全漏洞

IV. Related Vulnerabilities

Same product: Android for MSM, Firefox OS for MSM, QRD Android

Same vendor: Qualcomm, Inc.

V. Comments for CVE-2018-3574

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2018-3574

I. Basic Information for CVE-2018-3574

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-3574

III. Intelligence Information for CVE-2018-3574

Same Patch Batch · Qualcomm, Inc. · 2018-09-19 · 13 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2018-3574

Leave a comment