CVE-2019-9453

medium

Description

In the Android kernel in F2FS touch driver there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with system execution privileges needed. User interaction is not needed for exploitation.

References

https://usn.ubuntu.com/4527-1/

https://source.android.com/security/bulletin/pixel/2019-09-01

Details

Source: Mitre, NVD

Published: 2019-09-06

Updated: 2022-10-14

Risk Information

CVSS v2

Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N

Severity: Low

CVSS v3

Base Score: 4.4

Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Severity: Medium

Detections

Analytics