Описание
In intr_data_copy_cb of btif_hd.cc, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure in the Bluetooth service with no additional execution privileges needed. User interaction is not needed for exploitation.
Ссылки
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:o:google:android:8.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:8.1:*:*:*:*:*:*:*
cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:*
EPSS
Процентиль: 23%
0.00074
Низкий
6.5 Medium
CVSS3
6.2 Medium
CVSS3
Дефекты
CWE-190
CWE-125
Связанные уязвимости
CVSS3: 6.2
github
около 1 года назад
In intr_data_copy_cb of btif_hd.cc, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure in the Bluetooth service with no additional execution privileges needed. User interaction is not needed for exploitation.
EPSS
Процентиль: 23%
0.00074
Низкий
6.5 Medium
CVSS3
6.2 Medium
CVSS3
Дефекты
CWE-190
CWE-125