First UEFI Bootkit Targeting Linux Kernels Discovered by Researchers – Active IOCs

November 28, 2024

Multiple Microsoft SQL Vulnerabilities

November 29, 2024

Multiple Google Android Vulnerabilities

November 28, 2024

Severity

Medium

Analysis Summary

CVE-2018-9487 CVSS:5.5

Google Android is vulnerable to a denial of service, caused by a bad uid check in setVpnForcedLocked of Vpn.java. By sending a specially crafted request, a local attacker could exploit this vulnerability to cause a denial of service.

CVE-2018-9486 CVSS:6.2

Google Android could allow a local attacker to obtain sensitive information, caused by an out-of-bounds read in hidh_l2cif_data_ind of hidh_conn.cc. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information.

CVE-2018-9485 CVSS:6.5

Google Android could allow a remote attacker to obtain sensitive information, caused by an out-of-bounds read in l2cble_process_sig_cmd of l2c_ble.cc. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information.

Impact

Denial of Service
Information Disclosure

Indicators of Compromise

CVE

CVE-2018-9487
CVE-2018-9486
CVE-2018-9485

Affected Vendors

Google

Affected Products

Google Android

Remediation

Upgrade to the latest version of Android, available from the Google Website.

Google Website

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Local Privilege Escalation to Root via Sudo chroot in Linux

CoinMiner Malware – Active IOCs

Google Warns of Active Exploits Targeting Chrome V8 Vulnerability

Threat Insights

About Us

Our Leadership

CSR

Connect with Us