CVE-2018-9377
CVSS 3.1 Score 6.2 of 10 (medium)
Details
Published Nov 28, 2024
Updated: Nov 29, 2024
CWE ID 908
Summary
CVE-2018-9377 is a cybersecurity vulnerability affecting the IAudioPolicyService component of certain audio systems. In the file IAudioPolicyService.cpp, the function BnAudioPolicyService::onTransact contains uninitialized data which could result in information disclosure. This issue does not necessitate user interaction or additional execution privileges, making it a potential risk for local information leakage.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Android