VDB

CVE-2018-9440

CVE-2018-9440 PUBLISHED CVSS 6.5 MEDIUM

In parse of M3UParser.cpp there is a possible resource exhaustion due to improper input validation. This could lead to denial of service with no additional execution privileges needed. User interaction is needed for exploitation.

EPSS 0.16% · 36.3th percentile

Risk Scores

CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
0.16%
36.3th percentile

Affected Products

VendorProductVersions
GoogleAndroid9, 8.1, nyc-mr1-dev
googleandroid7.1.1, 7.1.2, 8.0

Timeline

  • Sep 5, 2018 CVE Published
  • Nov 20, 2024 EPSS Score
  • Dec 8, 2024 EPSS Score
  • Dec 26, 2024 EPSS Score
  • Jan 12, 2025 EPSS Score
  • Jan 30, 2025 EPSS Score
  • Feb 16, 2025 EPSS Score
  • Mar 6, 2025 EPSS Score
  • Mar 23, 2025 EPSS Score
  • Apr 10, 2025 EPSS Score
  • Apr 27, 2025 EPSS Score
  • May 15, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›