CVE-2018-9345 | THREATINT

Description

In BnAudioPolicyService::onTransact of AudioPolicyService.cpp, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

PUBLISHED Reserved 2018-04-05 | Published 2024-11-19 | Updated 2024-11-20 | Assigner google_android

Product status

Default status

unaffected

affected

6.0.1

affected

8.1

affected

nyc-mr1-dev

affected

nyc-mr2-dev

affected

References

source.android.com/security/bulletin/2018-06-01

cve.org (CVE-2018-9345)

nvd.nist.gov (CVE-2018-9345)

Download JSON