CVE-2018-9548 – In multiple functions of ContentProvider.java, there is a possible permission bypass due t …

0

Vuln ID: CVE-2018-9548

Published:  2018-12-06  14:29:01Z

Description: In multiple functions of ContentProvider.java, there is a possible permission bypass due to a missing URI validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-112555574.

Source: NVD.NIST.GOV