Out of Bounds Read Vulnerability in llcp_dlc_proc_i_pdu of Android NFC

Out of Bounds Read Vulnerability in llcp_dlc_proc_i_pdu of Android NFC

CVE-2018-9593 · LOW Severity

AV:A/AC:L/AU:N/C:P/I:N/A:N

In llcp_dlc_proc_i_pdu of llcp_dlc.cc in Android-7.0, Android-7.1.1, Android-7.1.2, Android-8.0, Android-8.1 and Android-9, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure over NFC with no additional execution privileges needed. User interaction is not needed for exploitation. Android ID: A-116722267.

Learn more about our Cis Benchmark Audit For Google Android.