CVE-2018-9486 in Androidinformazioni

Riassunto

di MITRE • 20/11/2024

In hidh_l2cif_data_ind of hidh_conn.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure over bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsabile

Google Android

Prenotare

05/04/2018

Divulgazione

20/11/2024

Moderazione

accettato

Voce

VDB-285564

CPE

pronto

CWE

CWE-125 (confermato)

CVSS

6.5 (NVD)

EPSS

0.00108

KEV

Attività

molto basso

Settore

Police, Homeoffice, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2018-9486
NVD	https://nvd.nist.gov/vuln/detail/CVE-2018-9486
CVE Details	https://www.cvedetails.com/cve/CVE-2018-9486/

◂ Precedente Visione D'ensemble Il prossimo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!