CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

RedhatCVE•added 2025/05/22 3:25 a.m.•5 views

CVE-2018-9474

In writeToParcel of MediaPlayer.java, there is a possible serialization/deserialization mismatch due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS7.8AI score0.0009EPSS

Exploits0References1

NVD•added 2024/11/20 6:15 p.m.•12 views

CVE-2018-9474

8.4CVSS0.0009EPSS

Exploits0References1

Circl•added 2024/11/20 5:35 p.m.•8 views

CVE-2018-9474

creationtimestamp| type| source ---|---|--- 2024-11-20 17:35:24+00:00| seen| https://infosec.exchange/users/cve/statuses/113516486623466921 2024-11-20 19:36:25+00:00| seen| https://t.me/cvedetector/11648...

8.4CVSS7.5AI score0.0009EPSS

Exploits0References2

CVE•added 2024/11/20 5:25 p.m.•50 views

CVE-2018-9474

CVE-2018-9474 is a local elevation-of-privilege in Android’s Media Framework, triggered by a serialization/deserialization mismatch in MediaPlayer.writeToParcel. Affected software includes Android 7.0–9; exploited via crafted media content with no user interaction. The issue is documented in the ...

8.4CVSS6.9AI score0.0009EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by