CVE-2018-9381

HIGH

Android - Information Disclosure via Uninitialized Data in gatts_process_read_by_type_req

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-9381. PoCs published by codecat007.

AI-analyzed exploit summary This repository contains functional exploit code for CVE-2018-9381, targeting Android's Bluedroid Bluetooth stack. The PoC includes a modified avrcp.c file designed to trigger the vulnerability when paired with a vulnerable device.

Description

In gatts_process_read_by_type_req of gatt_sr.c, there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

Exploits (1)

github WORKING POC 8 stars

by codecat007 · cpoc

https://github.com/codecat007/cvehub/tree/main/android/Bluedroid/poc_CVE-2018-9381.c

View Code ZIP pw:eip

This repository contains functional exploit code for CVE-2018-9381, targeting Android's Bluedroid Bluetooth stack. The PoC includes a modified avrcp.c file designed to trigger the vulnerability when paired with a vulnerable device.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Android Bluedroid Bluetooth stack

No auth needed

Prerequisites: Bluetooth pairing with target device · Compiled Bluedroid stack with PoC replacement

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (1)

Core 1

Core References

Patch, Vendor Advisory

https://source.android.com/docs/security/bulletin/pixel/2018-06-01

Scores

CVSS v3 7.5

EPSS 0.0019

EPSS Percentile 41.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-908

Status published

Products (1)

google/android 8.1

Published Dec 02, 2024

Tracked Since Feb 18, 2026