CVE-2017-18281
CVE-2017-18281
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
29 Oct 2018Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A bool variable in Video function, which gets typecasted to int before being read could result in an out of bound read access in all Android releases from CAF using the linux kernel
Affected products
Qualcomm, Inc. · Android for MSM, Firefox OS for MSM, QRD Android