CVE-2018-9368

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 19, 2024
Updated: Nov 22, 2024
CWE ID 787

Summary

CVE-2018-9368 is a vulnerability affecting the mtkscoaudio debugfs component. It allows for a possible arbitrary kernel memory write due to a missing bounds check and weakened SELinux policies. This issue could be exploited to gain local privilege escalation, granting system execution privileges without requiring user interaction.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share