CVE-2018-9565

Summary

In readBytes of xltdecwbxml.c, there is a possible out of bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-16680558.

Affected Software

VendorProductVersion RangeStatus
Google Inc.AndroidAndroid-16680558affected

Weaknesses

  • Information disclosure

ADP Enrichment

CVE Program Container

Additional References

References