CVE-2018-9456
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Nov 19, 2024
Updated: Nov 22, 2024
CWE ID 125
Summary
CVE-2018-9456 is a cybersecurity vulnerability affecting sdpu_extract_attr_seq function in sdp_utils.cc. The issue arises due to an incorrect bounds check, resulting in a potential out-of-bounds read. This weakness could be exploited remotely to cause a denial-of-service condition without requiring additional execution privileges. User interaction is not necessary for successful exploitation.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Android