In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, the UPnP daemon should not be running out of box because it enables port forwarding without authentication.
References
Link | Resource |
---|---|
https://source.codeaurora.org/quic/qsdk/oss/system/feeds/routing/commit/?id=3f625190fb469cb56de619eae6b5ca8db2463d5b | Patch Third Party Advisory |
https://www.codeaurora.org/security-bulletin/2018/11/05/november-2018-code-aurora-forum-security-bulletin | Patch Third Party Advisory |
Configurations
History
No history.
Information
Published : 2018-11-27 16:29
Updated : 2024-02-28 16:48
NVD link : CVE-2018-11946
Mitre link : CVE-2018-11946
CVE.ORG link : CVE-2018-11946
JSON object : View
Products Affected
- android
CWE