Global infos:

The WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not verify authorization for private SET IOCTL calls, which allows attackers to gain privileges via a crafted application, related to wlan_hdd_hostapd.c and wlan_hdd_wext.c.

CVE Status: Modified

References:

[email protected]

[email protected]

[email protected]

af854a3a-2127-422b-91ae-364da2661108

af854a3a-2127-422b-91ae-364da2661108

af854a3a-2127-422b-91ae-364da2661108

Metrics:

Attribute	Value
Attack Complexity	LOW
Attack Vector	LOCAL
Availability Impact	HIGH
Base Score	7.8
Base Severity	HIGH
Confidentiality Impact	HIGH
Integrity Impact	HIGH
Privileges Required	NONE
Scope	UNCHANGED
User Interaction	REQUIRED
Vector String	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability Score	1.8
Impact Score	5.9
Source	[email protected]
Type	Primary

Links:

Exploit-db
Github