CVE-2018-9470

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 20, 2024

Updated: Nov 21, 2024

CWE ID 787

Summary

CVE-2018-9470 is a vulnerability affecting an unprivileged application, where in the "bff_Scanner_addOutPos" function of "Scanner.c," an incorrect bounds check may occur, resulting in a possible out-of-bounds write. This issue could potentially allow for remote privilege escalation without the need for additional execution privileges. However, user interaction is necessary for an attacker to successfully exploit this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/WIQXo8
https://www.cve.org/CVERecord?id=CVE-2018-9470
https://nvd.nist.gov/vuln/detail/CVE-2018-9470

Back to Vulnerability Database