| ID |
CVE-2018-5859
|
| Summary |
Due to a race condition in the MDSS MDP driver in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, a Use After Free condition can occur. |
| References |
|
| Vulnerable Configurations |
|
| CVSS |
| Base: | 4.4 (as of 27-08-2018 - 17:20) |
| Impact: | |
| Exploitability: | |
|
| CWE |
CWE-416 |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| LOCAL |
MEDIUM |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| PARTIAL |
PARTIAL |
PARTIAL |
|
| cvss-vector
via4
|
AV:L/AC:M/Au:N/C:P/I:P/A:P
|
| refmap
via4
|
|
| Last major update |
27-08-2018 - 17:20 |
| Published |
06-07-2018 - 19:29 |
| Last modified |
27-08-2018 - 17:20 |
