Possible Out of Bounds Write in HWCSession::SetColorModeById Could Lead to Local Escalation of Privilege
CVE-2018-9409
Currently unrated 🤨
Summary
In HWCSession::SetColorModeById of hwc_session.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Affected Version(s)
Android = 8.1
Refferences
Timeline
Vulnerability published
Vulnerability Reserved
Collectors
NVD DatabaseMitre Database