Possible Out of Bounds Write in l2c_lcc_proc_pdu Could Lead to Remote Escalation of Privilege
CVE-2018-9380

8.8HIGH

Key Information:

Vendor: Google
Status: Android
Vendor: CVE Published:; 2 December 2024

What is CVE-2018-9380?

An out of bounds write vulnerability presents in the l2c_lcc_proc_pdu function within the l2c_fcr.cc file, attributable to insufficient input validation. This issue can lead to unauthorized escalation of privileges without requiring additional execution context. Exploitation of the vulnerability necessitates user interaction, which could allow an attacker to manipulate the execution environment in a harmful way.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Android 7

Android 7.1.1

Android 7.1.2

References

https://source.android.com/docs/security/bulletin/pixel/2...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Dec 2, 2024
Vulnerability Reserved
Apr 5, 2018

JSON

Google

What is CVE-2018-9380?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.