In functionality implemented in System UI, there are insufficient protections implemented around overlay windows. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1. Android ID: A-34170870
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/105848 | Third Party Advisory VDB Entry |
https://source.android.com/security/bulletin/2018-11-01 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: google_android
Published: 2018-11-14T18:00:00
Updated: 2018-11-15T10:57:01
Reserved: 2018-04-05T00:00:00
Link: CVE-2018-9524
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-11-14T18:29:00.573
Modified: 2019-10-03T00:03:26.223
Link: CVE-2018-9524
JSON object: View
Redhat Information
No data.
CWE