exploitDog

CVE-2018-12006

Опубликовано: 11 фев. 2019

Источник: nvd

CVSS3: 5.5

CVSS2: 2.1

EPSS Низкий

Описание

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Users with no extra privileges can potentially access leaked data due to uninitialized padding present in display function.

Ссылки

https://www.codeaurora.org/security-bulletin/2019/01/07/january-2019-code-aurora-security-bulletin
Patch
Third Party Advisory
https://www.codeaurora.org/security-bulletin/2019/01/07/january-2019-code-aurora-security-bulletin
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

EPSS

Процентиль: 4%

0.00019

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-rvf6-885c-7jfj

CVSS3: 5.5

github

больше 3 лет назад

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Users with no extra privileges can potentially access leaked data due to uninitialized padding present in display function.

EPSS

Процентиль: 4%

0.00019

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-200