Vulnerabilities > CVE-2018-5845 - Use After Free vulnerability in Google Android

047910
CVSS 7.6 - HIGH
Attack vector
NETWORK
Attack complexity
HIGH
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
high complexity
google
CWE-416

Summary

A race condition in drm_atomic_nonblocking_commit() in the display driver can potentially lead to a Use After Free scenario in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.

Vulnerable Configurations

Part Description Count
OS
Google
1

Common Weakness Enumeration (CWE)