Possible Out-of-Bounds Read Leads to Remote Information Disclosure
CVE-2018-9481
6.5MEDIUM
What is CVE-2018-9481?
A vulnerability exists in the Bluetooth services of Apache Traffic Server that allows for an out-of-bounds read caused by an integer overflow in the function bta_hd_set_report_act within the bta_hd_act.cc source file. This flaw may enable attackers to disclose sensitive information remotely, without the need for any action from the user. It is crucial for system administrators and users of affected versions to apply the latest patches to mitigate potential risks associated with this vulnerability.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
Android 8
Android 8.1
Android 9
References
CVSS V3.1
Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved