Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2018-9433

Nov. 19, 2024, 10:15 p.m.

Tags

security@android.com
2024-11-19
CVE-2018-9433

Product(s) Impacted

UNKNOWN

Description

In ArrayConcatVisitor of builtins-array.cc, there is a possible type confusion due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.

Weaknesses

Date

Published: Nov. 19, 2024, 10:15 p.m.

Last Modified: Nov. 19, 2024, 10:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

security@android.com

References

https://source.android.com/ security@android.com