CVE-2018-11025

Опубликовано: 16 окт. 2018

Источник: nvd

CVSS3: 7.5

CVSS2: 7.8

EPSS Низкий

Описание

kernel/omap/drivers/mfd/twl6030-gpadc.c in the kernel component in Amazon Kindle Fire HD(3rd) Fire OS 4.5.5.3 allows attackers to inject a crafted argument via the argument of an ioctl on device /dev/twl6030-gpadc with the command 24832 and cause a kernel crash.

Ссылки

https://github.com/datadancer/HIAFuzz/blob/master/CVE-Advisory.md
Exploit
Third Party Advisory
https://github.com/datadancer/HIAFuzz/blob/master/CVE-Advisory.md
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:amazon:fire_os:4.5.5.3:*:*:*:*:*:*:*

cpe:2.3:h:amazon:kindle_fire_hd:3:*:*:*:*:*:*:*

EPSS

Процентиль: 88%

0.0401

Низкий

7.5 High

CVSS3

7.8 High

CVSS2

Дефекты

CWE-88

Связанные уязвимости

GHSA-4cj9-3fxp-g8ff