CVE-2018-9438
CVE-2018-9438
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
06 Nov 2018Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
When a device connects only over WiFi VPN, the device may not receive security updates due to some incorrect checks. This could lead to a local denial of service of security updates with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android Versions: Android-8.1 Android ID: A-78644887.
Affected products
Google Inc. · AndroidWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →