CVE-2018-9481

MEDIUM

Google Android < 6.2.3 - Integer Overflow

Title source: rule

Description

In bta_hd_set_report_act of bta_hd_act.cc, there is a possible out-of-bounds read due to an integer overflow. This could lead to remote information disclosure in the Bluetooth service with no additional execution privileges needed. User interaction is not needed for exploitation.

References (1)

[Mailing List] https://lists.apache.org/thread.html/rcb8bae0b289d71d18a3220be256c1dfcc4d9ab49d2d6e07d1eac7c9d@%3Cdev.trafficserver.apache.org%3E

Scores

CVSS v3 6.5

EPSS 0.0009

EPSS Percentile 25.1%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Classification

CWE

CWE-190 CWE-125

Status published

Affected Products (4)

google/android

apache/traffic_server < 6.2.3

Timeline

Published Nov 20, 2024

Tracked Since Feb 18, 2026