CVE-2018-9481

Source
https://cve.org/CVERecord?id=CVE-2018-9481
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-9481.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2018-9481
Published
2024-11-20T18:15:19.940Z
Modified
2026-07-08T05:54:40.980598329Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

In btahdsetreportact of btahdact.cc, there is a possible out-of-bounds read due to an integer overflow. This could lead to remote information disclosure in the Bluetooth service with no additional execution privileges needed. User interaction is not needed for exploitation.

Database specific
{
    "unresolved_ranges": [
        {
            "source": "CPE_STRING",
            "vendor_product": "google:android",
            "extracted_events": [
                {
                    "introduced": "8.0"
                },
                {
                    "last_affected": "8.0"
                },
                {
                    "introduced": "8.1"
                },
                {
                    "last_affected": "8.1"
                },
                {
                    "introduced": "9.0"
                },
                {
                    "last_affected": "9.0"
                }
            ],
            "cpes": [
                "cpe:2.3:o:google:android:8.0:*:*:*:*:*:*:*",
                "cpe:2.3:o:google:android:8.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:*"
            ]
        }
    ]
}
References

Affected packages

Git / github.com/apache/trafficserver

Affected ranges

Type
GIT
Repo
https://github.com/apache/trafficserver
Events
Database specific
{
    "source": "CPE_RANGE",
    "cpe": "cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "6.0.0"
        },
        {
            "last_affected": "6.2.3"
        },
        {
            "introduced": "7.0.0"
        },
        {
            "fixed": "7.1.10"
        },
        {
            "introduced": "8.0.0"
        },
        {
            "fixed": "8.0.7"
        }
    ]
}

Affected versions

8.*
8.0.0
8.0.0-rc4
8.0.1
8.0.1-rc0
8.0.2
8.0.2-rc0
8.0.3
8.0.3-rc0
8.0.4
8.0.4-rc0
8.0.5
8.0.6
8.0.6-rc0
8.0.6-rc1

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-9481.json"