CVE-2018-9431

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 2, 2024
Updated: Dec 18, 2024
CWE ID 276

Summary

CVE-2018-9431 is a vulnerability affecting the OSUInfo component of an unspecified software. In the OSUInfo.java file, there is a flaw that permits an attacker to escalate privileges without requiring any additional execution privileges. This issue stems from improper input validation in the OSUInfo function, allowing for potential local privilege escalation. No user interaction is necessary for an attacker to exploit this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share