CVE-2018-9414
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Dec 2, 2024
Updated: Dec 18, 2024
CWE ID 787
Summary
CVE-2018-9414 is a stack write vulnerability affecting the gattServerSendResponseNative function in com_android_bluetooth_gatt.cpp. The issue arises due to a missing bounds check, allowing an attacker to write outside of the allocated memory. Successful exploitation of this vulnerability could result in local privilege escalation, granting the attacker User execution privileges without the need for user interaction.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Android