Home > Vulnerability Database > CVE-2018-9456

Mend.io Vulnerability Database

CVE-2018-9456

Date: November 19, 2024

In sdpu_extract_attr_seq of sdp_utils.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation

Language: C++

Severity Score

7.5

Related Resources (4)

Url: https://source.android.com/security/bulletin/2018-09-01

Url: https://android.googlesource.com/platform/system/bt/+/04be7ae5771ee1edc6cbe2af26998755d7be5a68

Url: https://nvd.nist.gov/vuln/detail/CVE-2018-9456

Url: https://www.mend.io/vulnerability-database/CVE-2018-9456

Severity Score

7.5

Weakness Type (CWE)

Out-of-bounds Read

CWE-125

CVSS v3.1

Base Score:	7.5
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2018-9456

Date: November 19, 2024

Language: C++

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?