Lucene search

Jianjun Dai (@Jioun_dai) and Guang Gong (@oldfresher) of Alpha Team, Qihoo 360 Technology Co. LtdANDROID:CVE-2018-9357

HistoryJun 01, 2018 - 12:00 a.m.

CVE-2018-9357

2018-06-0100:00:00

Jianjun Dai (@Jioun_dai) and Guang Gong (@oldfresher) of Alpha Team, Qihoo 360 Technology Co. Ltd

www.androidvulnerabilities.org

0.0004 Low

EPSS

Percentile

5.1%

JSON

In BNEP_Write of bnep_api.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-6.0 Android-6.0.1 Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android ID: A-74947856.

CPENameOperatorVersion
androidlt7.0
androidlt8.0
androidlt7.1.1
androidlt8.1
androidlt7.1.2
androidlt6.0.1
androidlt6.0

Name	Operator	Version
android	lt	7.0
android	lt	8.0
android	lt	7.1.1
android	lt	8.1
android	lt	7.1.2
android	lt	6.0.1
android	lt	6.0

References

android.googlesource.com/platform/system/bt/+/9164ee1aaf3609b4771d39302e3af649f44c9e66

nvd.nist.gov/vuln/data-feeds

source.android.com/security/bulletin/2018-06-01.html

source.android.com/security/overview/acknowledgements

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for ANDROID:CVE-2018-9357