ГлавнаяУязвимости → CVE-2018-9466
8.8высокая

CVE-2018-9466

Описание

In the xmlSnprintfElementContent function of valid.c, there is a possible out of bounds write. This could lead to remote escalation of privilege in an unprivileged app with no additional execution privileges needed. User interaction is needed for exploitation.

Затрагиваемое ПО
Google Android
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Источники
https://source.android.com/security/bulletin/2018-09-01https://security.netapp.com/advisory/ntap-20241108-0002/