CVE-2018-9481

MEDIUM

Google Android < 6.2.3 - Integer Overflow

Title source: rule

Description

In bta_hd_set_report_act of bta_hd_act.cc, there is a possible out-of-bounds read due to an integer overflow. This could lead to remote information disclosure in the Bluetooth service with no additional execution privileges needed. User interaction is not needed for exploitation.

References (1)

Core 1

Core References

Mailing List

https://lists.apache.org/thread.html/rcb8bae0b289d71d18a3220be256c1dfcc4d9ab49d2d6e07d1eac7c9d@%3Cdev.trafficserver.apache.org%3E

Scores

CVSS v3 6.5

EPSS 0.0009

EPSS Percentile 25.0%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-190 CWE-125

Status published

Products (4)

apache/traffic_server 6.0.0 - 6.2.3

google/android 8.0

google/android 8.1

google/android 9.0

Published Nov 20, 2024

Tracked Since Feb 18, 2026