In update_gps_sv and output_vzw_debug of
vendor/mediatek/proprietary/hardware/connectivity/gps/gps_hal/src/gpshal_wor
ker.c, there is a possible out of bounds write due to a missing bounds
check. This could lead to local escalation of privilege with System
execution privileges needed. User interaction is not needed for
exploitation.
Metrics
Affected Vendors & Products
References
History
Fri, 06 Dec 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Google
Google android |
|
Weaknesses | CWE-787 | |
CPEs | cpe:2.3:o:google:android:-:*:*:*:*:*:*:* | |
Vendors & Products |
Google
Google android |
|
Metrics |
cvssV3_1
|
Thu, 05 Dec 2024 22:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | In update_gps_sv and output_vzw_debug of vendor/mediatek/proprietary/hardware/connectivity/gps/gps_hal/src/gpshal_wor ker.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: google_android
Published: 2024-12-05T22:25:10.215Z
Updated: 2024-12-06T16:29:50.053Z
Reserved: 2018-04-05T00:00:00.000Z
Link: CVE-2018-9391
Vulnrichment
Updated: 2024-12-06T16:29:41.531Z
NVD
Status : Analyzed
Published: 2024-12-05T23:15:04.877
Modified: 2024-12-19T17:18:26.910
Link: CVE-2018-9391
Redhat
No data.