PT-2019-11156 · Google · Android
Publicado
2019-06-19
·
Atualizado
2019-06-20
·
CVE-2018-9561
CVSS v2.0
7.1
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
Android versions 7.0 through 9
Description:
The issue is related to a possible out-of-bound read in the
llcp util parse connect function of llcp util.cc due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is required for exploitation.Recommendations:
For Android versions 7.0 through 9, update to a version that includes the fix for this issue.
Correção
Out of bounds Read
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Android