← back
CVE-2018-9363

CVE-2018-9363

EPSS 0.4%
In the hidp_process_report in bluetooth, there is an integer overflow. This could lead to an out of bounds write with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-65853588 References: Upstream kernel.
Affected products
Google Inc. · Android

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://access.redhat.com/errata/RHSA-2018:2948https://access.redhat.com/errata/RHSA-2019:2029https://access.redhat.com/errata/RHSA-2019:2043https://lists.debian.org/debian-lts-announce/2018/10/msg00003.htmlhttps://source.android.com/security/bulletin/2018-06-01https://usn.ubuntu.com/3797-1/https://usn.ubuntu.com/3797-2/https://usn.ubuntu.com/3820-1/https://usn.ubuntu.com/3820-2/https://usn.ubuntu.com/3820-3/https://usn.ubuntu.com/3822-1/https://usn.ubuntu.com/3822-2/