CVE-2018-5858
CVE-2018-5858
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
06 jul 2018Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
In the audio debugfs in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, out of bounds access can occur.
Productos afectados
Qualcomm, Inc. · Android for MSM, Firefox OS for MSM, QRD AndroidReferencias
https://source.android.com/security/bulletin/pixel/2018-07-01https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=cd1f0cdd4715e8eae4066bd34df2eef4cf94bd7fhttps://source.codeaurora.org/quic/la/platform/vendor/opensource/audio-kernel/commit/?id=78193fa06b267c1d6582e5e6f9fb779cf067015ehttps://www.codeaurora.org/security-bulletin/2018/07/02/july-2018-code-aurora-security-bulletin