CVE-2018-9366
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Nov 19, 2024
Updated: Nov 20, 2024
CWE ID 787
Summary
CVE-2018-9366 is a vulnerability affecting IMSA_Recv_Thread and VT_IMCB_Thread in ImsaClient.cpp and VideoTelephony.c. An integer overflow in these threads leads to a possible out-of-bounds write, enabling a local privilege escalation. No additional execution privileges or user interaction are required for exploitation.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share