Description

In bta_hd_set_report_act of bta_hd_act.cc, there is a possible out-of-bounds read due to an integer overflow. This could lead to remote information disclosure in the Bluetooth service with no additional execution privileges needed. User interaction is not needed for exploitation.

Remediation

References

CVE-2018-9481

Related Vulnerabilities

Invision Power Board version 3.3.4 unserialize PHP code execution

WordPress Ultimate Member Plugin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-8520)

SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-8156)

WordPress Plugin Dynamic Widgets 'id' Parameter Cross-Site Scripting (1.5.1)

Zope Web Application Server Cryptographic Issues Vulnerability (CVE-2012-6661)

Severity

Medium

Classification

CVE-2018-9481 CWE-190 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities