Potential OOB write in drivers/input/touchscreen/mediatek/GT1151/gt1x_generic.c and gt1x_tools.c may lead to local escalation of privilege
CVE-2018-9400
6.7MEDIUM
What is CVE-2018-9400?
A vulnerability exists in the GT1151 Touchscreen Driver where the functions gt1x_debug_write_proc and gt1x_tool_write are susceptible to an out of bounds write due to an absence of proper bounds checking. This weakness may allow an attacker with local access to exploit the vulnerability, potentially gaining elevated privileges to execute system-level commands. No user interaction is required for this vulnerability to be exploited, which increases the risk to affected systems.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
Android Kernel
References
CVSS V3.1
Score:
6.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published