In mtk_cfg80211_vendor_packet_keep_alive_start and mtk_cfg80211_vendor_set_config of drivers/misc/mediatek/connectivity/wlan/gen2/os/linux/gl_vendor.c, there is a possible OOB write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.
Metrics
Affected Vendors & Products
References
History
Wed, 18 Dec 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:o:google:android:-:*:*:*:*:*:*:* |
Thu, 05 Dec 2024 18:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Google
Google android Google pixel |
|
Weaknesses | CWE-787 | |
CPEs | cpe:2.3:h:google:pixel:*:*:*:*:*:*:*:* cpe:2.3:o:google:android:*:*:*:*:*:*:*:* |
|
Vendors & Products |
Google
Google android Google pixel |
|
Metrics |
cvssV3_1
|
Wed, 04 Dec 2024 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | In mtk_cfg80211_vendor_packet_keep_alive_start and mtk_cfg80211_vendor_set_config of drivers/misc/mediatek/connectivity/wlan/gen2/os/linux/gl_vendor.c, there is a possible OOB write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: google_android
Published: 2024-12-04T17:20:55.185Z
Updated: 2024-12-05T17:13:11.248Z
Reserved: 2018-04-05T00:00:00.000Z
Link: CVE-2018-9395
Vulnrichment
Updated: 2024-12-05T17:13:04.012Z
NVD
Status : Analyzed
Published: 2024-12-04T18:15:10.163
Modified: 2024-12-18T20:46:08.327
Link: CVE-2018-9395
Redhat
No data.