CVE-2018-5858
CVE-2018-5858
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
06 jul 2018Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
In the audio debugfs in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, out of bounds access can occur.
Produtos afetados
Qualcomm, Inc. · Android for MSM, Firefox OS for MSM, QRD AndroidReferências
https://source.android.com/security/bulletin/pixel/2018-07-01https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=cd1f0cdd4715e8eae4066bd34df2eef4cf94bd7fhttps://source.codeaurora.org/quic/la/platform/vendor/opensource/audio-kernel/commit/?id=78193fa06b267c1d6582e5e6f9fb779cf067015ehttps://www.codeaurora.org/security-bulletin/2018/07/02/july-2018-code-aurora-security-bulletin