CVE-2018-11912

Опубликовано: 27 нояб. 2018

Источник: nvd

CVSS3: 7.8

CVSS2: 7.2

EPSS Низкий

Описание

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper configuration of daemons may lead to unprivileged access.

Ссылки

https://source.codeaurora.org/quic/le/meta-qti-bsp/commit/?id=36a2b6dbb9b7839dcb2127bb5d6a5d90c520345f
Patch
Third Party Advisory
https://www.codeaurora.org/security-bulletin/2018/11/05/november-2018-code-aurora-forum-security-bulletin
Patch
Third Party Advisory
https://source.codeaurora.org/quic/le/meta-qti-bsp/commit/?id=36a2b6dbb9b7839dcb2127bb5d6a5d90c520345f
Patch
Third Party Advisory
https://www.codeaurora.org/security-bulletin/2018/11/05/november-2018-code-aurora-forum-security-bulletin
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

EPSS

Процентиль: 2%

0.00014

Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-269

Связанные уязвимости

GHSA-j3px-9mqv-rq22