CVE-2018-9441

MEDIUM

Android - Out-of-bounds Read in sdp_copy_raw_data

Title source: llm
STIX 2.1

Description

In sdp_copy_raw_data of sdp_discovery.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.

References (1)

Core 1

Scores

CVSS v3 5.5
EPSS 0.0008
EPSS Percentile 0.4%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-125
Status published
Products (7)
google/android 6.0
google/android 6.0.1
google/android 7.0
google/android 7.1.1
google/android 7.1.2
google/android 8.0
google/android 8.1
Published Dec 03, 2024
Tracked Since Feb 18, 2026