KASLR Bypass Vulnerability in Android Devices by Google
CVE-2018-9384
Currently unrated
Summary
This vulnerability allows for a potential bypass of Kernel Address Space Layout Randomization (KASLR) in certain Android versions. Due to an unusual root cause, attackers may exploit this vulnerability to disclose sensitive information locally. The exploitation does not require user interaction, and the vulnerability could lead to unauthorized access to system resources, making it critical for users to update their devices to the latest security patches provided by Google.
References
Timeline
Vulnerability published