Home > Vulnerability Database > CVE-2018-9430

Mend.io Vulnerability Database

CVE-2018-9430

Date: December 2, 2024

In prop2cfg of btif_storage.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

Language: C++

Severity Score

9.8

Related Resources (4)

Url: https://source.android.com/docs/security/bulletin/pixel/2018-07-01

Url: https://nvd.nist.gov/vuln/detail/CVE-2018-9430

Url: https://android.googlesource.com/platform/system/bt/+/605ebb3369b3f961196815065a9fe4ba5bc4d659

Url: https://www.mend.io/vulnerability-database/CVE-2018-9430

Severity Score

9.8

Weakness Type (CWE)

Out-of-bounds Read

CWE-125

Out-of-bounds Write

CWE-787

CVSS v3.1

Base Score:	9.8
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2018-9430

Date: December 2, 2024

Language: C++

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?