How severe is CVE-2018-9421?

CVE-2018-9421 has a CVSS v3 score of 5.5 (MEDIUM).

CVE-2018-9421

Name: android
Author: google

5.5MEDIUM

In writeInplace of Parcel.cpp, there is a possible information leak across processes, using Binder, due to uninitialized data. This could lead to local information disclosure with no additional execut

Published: 11/19/2024Updated: 11/22/2024

Description

In writeInplace of Parcel.cpp, there is a possible information leak across processes, using Binder, due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

AI AnalysisPowered by AI

Affected Products

googleandroid

6.0

googleandroid

6.0.1

googleandroid

7.0

googleandroid

7.1.1

googleandroid

7.1.2

googleandroid

8.0

googleandroid

8.1

References

https://source.android.com/security/bulletin/2018-07-01
PatchVendor Advisory