How severe is CVE-2018-9381?

CVE-2018-9381 has a CVSS v3 score of 7.5 (HIGH).

CVE-2018-9381

Name: android
Author: google

7.5HIGH

In gatts_process_read_by_type_req of gatt_sr.c, there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution priv

Veröffentlicht: 12/2/2024Aktualisiert: 12/18/2024

Beschreibung

In gatts_process_read_by_type_req of gatt_sr.c, there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

KI-AnalyseKI-gestützt

Betroffene Produkte

googleandroid

8.1

Referenzen

https://source.android.com/docs/security/bulletin/pixel/2018-06-01
PatchVendor Advisory