CVE-2018-9382

Name of the Vulnerable Software and Affected Versions WifiServiceImpl.java (affected versions not specified)

Description The issue is related to a missing permission check in multiple functions of WifiServiceImpl.java, which could allow activating a Wi-Fi access point from a non-owner profile. This might lead to a local privilege escalation without requiring additional execution permissions. The exploitation does not require user interaction.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.