How severe is CVE-2018-9381?

CVE-2018-9381 has a CVSS v3 score of 7.5 (HIGH).

CVE-2018-9381

Name: android
Author: google

7.5HIGH

In gatts_process_read_by_type_req of gatt_sr.c, there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution priv

Published: 12/2/2024Updated: 12/18/2024

Description

In gatts_process_read_by_type_req of gatt_sr.c, there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

AI AnalysisPowered by AI

Affected Products

googleandroid

8.1

References

https://source.android.com/docs/security/bulletin/pixel/2018-06-01
PatchVendor Advisory