cvelistv5 - cve-2018-9489

CVE-2018-9489 (GCVE-0-2018-9489)

Vulnerability from cvelistv5 – Published: 2018-11-06 17:00 – Updated: 2024-09-16 20:22

Summary

When wifi is switched, function sendNetworkStateChangeBroadcast of WifiStateMachine.java broadcasts an intent including detailed wifi network information. This could lead to information disclosure with no execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0 Android ID: A-77286245.

Severity ?

No CVSS data available.

CWE

Information Disclosure

Assigner

google_android

References

URL

Tags

	https://wwws.nightwatchcybersecurity.com/2018/08/…	x_refsource_MISC
	http://www.securitytracker.com/id/1041590	vdb-entryx_refsource_SECTRACK

Impacted products

	Vendor	Product	Version
	Google Inc.	Android	Affected: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T07:24:54.961Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://wwws.nightwatchcybersecurity.com/2018/08/29/sensitive-data-exposure-via-wifi-broadcasts-in-android-os-cve-2018-9489/"
          },
          {
            "name": "1041590",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1041590"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Android",
          "vendor": "Google Inc.",
          "versions": [
            {
              "status": "affected",
              "version": "Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0"
            }
          ]
        }
      ],
      "datePublic": "2018-10-31T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "When wifi is switched, function sendNetworkStateChangeBroadcast of WifiStateMachine.java broadcasts an intent including detailed wifi network information. This could lead to information disclosure with no execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0 Android ID: A-77286245."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Information Disclosure",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-11-07T10:57:01",
        "orgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
        "shortName": "google_android"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://wwws.nightwatchcybersecurity.com/2018/08/29/sensitive-data-exposure-via-wifi-broadcasts-in-android-os-cve-2018-9489/"
        },
        {
          "name": "1041590",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1041590"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@android.com",
          "DATE_PUBLIC": "2018-10-31T00:00:00",
          "ID": "CVE-2018-9489",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Android",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Google Inc."
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "When wifi is switched, function sendNetworkStateChangeBroadcast of WifiStateMachine.java broadcasts an intent including detailed wifi network information. This could lead to information disclosure with no execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0 Android ID: A-77286245."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Information Disclosure"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://wwws.nightwatchcybersecurity.com/2018/08/29/sensitive-data-exposure-via-wifi-broadcasts-in-android-os-cve-2018-9489/",
              "refsource": "MISC",
              "url": "https://wwws.nightwatchcybersecurity.com/2018/08/29/sensitive-data-exposure-via-wifi-broadcasts-in-android-os-cve-2018-9489/"
            },
            {
              "name": "1041590",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1041590"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
    "assignerShortName": "google_android",
    "cveId": "CVE-2018-9489",
    "datePublished": "2018-11-06T17:00:00Z",
    "dateReserved": "2018-04-05T00:00:00",
    "dateUpdated": "2024-09-16T20:22:34.166Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:google:android:7.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"09E6085C-A61E-4A89-BF80-EDD9A7DF1E47\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:google:android:7.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D835D592-2423-44C6-804A-3AD010112E7C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:google:android:7.1.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"568E2561-A068-46A2-B331-BBA91FC96F0C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:google:android:8.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B578E383-0D77-4AC7-9C81-3F0B8C18E033\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:google:android:8.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B06BE74B-83F4-41A3-8AD3-2E6248F7B0B2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8DFAAD08-36DA-4C95-8200-C29FE5B6B854\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"When wifi is switched, function sendNetworkStateChangeBroadcast of WifiStateMachine.java broadcasts an intent including detailed wifi network information. This could lead to information disclosure with no execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0 Android ID: A-77286245.\"}, {\"lang\": \"es\", \"value\": \"Cuando WiFi est\\u00e1 habilitado, la funci\\u00f3n sendNetworkStateChangeBroadcast de WifiStateMachine.java transmite un intent que incluye informaci\\u00f3n detallada de la red WiFi. Esto podr\\u00eda llevar a una divulgaci\\u00f3n de informaci\\u00f3n sin necesitar privilegios de ejecuci\\u00f3n. No se necesita interacci\\u00f3n del usuario para explotarlo. Producto: Versiones de Android: Android-7.0, Android-7.1.1, Android-7.1.2, Android-8.0, Android-8.1 y Android-9.0. Android ID: A-77286245.\"}]",
      "id": "CVE-2018-9489",
      "lastModified": "2024-11-21T04:15:34.530",
      "metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:N/A:N\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2018-11-06T17:29:01.473",
      "references": "[{\"url\": \"http://www.securitytracker.com/id/1041590\", \"source\": \"security@android.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://wwws.nightwatchcybersecurity.com/2018/08/29/sensitive-data-exposure-via-wifi-broadcasts-in-android-os-cve-2018-9489/\", \"source\": \"security@android.com\", \"tags\": [\"Mitigation\", \"Third Party Advisory\"]}, {\"url\": \"http://www.securitytracker.com/id/1041590\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://wwws.nightwatchcybersecurity.com/2018/08/29/sensitive-data-exposure-via-wifi-broadcasts-in-android-os-cve-2018-9489/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mitigation\", \"Third Party Advisory\"]}]",
      "sourceIdentifier": "security@android.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-200\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2018-9489\",\"sourceIdentifier\":\"security@android.com\",\"published\":\"2018-11-06T17:29:01.473\",\"lastModified\":\"2024-11-21T04:15:34.530\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"When wifi is switched, function sendNetworkStateChangeBroadcast of WifiStateMachine.java broadcasts an intent including detailed wifi network information. This could lead to information disclosure with no execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0 Android ID: A-77286245.\"},{\"lang\":\"es\",\"value\":\"Cuando WiFi est\u00e1 habilitado, la funci\u00f3n sendNetworkStateChangeBroadcast de WifiStateMachine.java transmite un intent que incluye informaci\u00f3n detallada de la red WiFi. Esto podr\u00eda llevar a una divulgaci\u00f3n de informaci\u00f3n sin necesitar privilegios de ejecuci\u00f3n. No se necesita interacci\u00f3n del usuario para explotarlo. Producto: Versiones de Android: Android-7.0, Android-7.1.1, Android-7.1.2, Android-8.0, Android-8.1 y Android-9.0. Android ID: A-77286245.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-200\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09E6085C-A61E-4A89-BF80-EDD9A7DF1E47\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:7.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D835D592-2423-44C6-804A-3AD010112E7C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:7.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"568E2561-A068-46A2-B331-BBA91FC96F0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B578E383-0D77-4AC7-9C81-3F0B8C18E033\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B06BE74B-83F4-41A3-8AD3-2E6248F7B0B2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8DFAAD08-36DA-4C95-8200-C29FE5B6B854\"}]}]}],\"references\":[{\"url\":\"http://www.securitytracker.com/id/1041590\",\"source\":\"security@android.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://wwws.nightwatchcybersecurity.com/2018/08/29/sensitive-data-exposure-via-wifi-broadcasts-in-android-os-cve-2018-9489/\",\"source\":\"security@android.com\",\"tags\":[\"Mitigation\",\"Third Party Advisory\"]},{\"url\":\"http://www.securitytracker.com/id/1041590\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://wwws.nightwatchcybersecurity.com/2018/08/29/sensitive-data-exposure-via-wifi-broadcasts-in-android-os-cve-2018-9489/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Third Party Advisory\"]}]}}"
  }
}

CERTFR-2019-AVI-405

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans Google Android. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Google	Android	Android version Q sans le correctif de sécurité 2019-09-01

References

Title

Publication Time

Tags

Bulletin de sécurité Android du 20 août 2019

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Android version Q sans le correctif de s\u00e9curit\u00e9 2019-09-01",
      "product": {
        "name": "Android",
        "vendor": {
          "name": "Google",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2019-9348",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9348"
    },
    {
      "name": "CVE-2019-9352",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9352"
    },
    {
      "name": "CVE-2019-9350",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9350"
    },
    {
      "name": "CVE-2019-9427",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9427"
    },
    {
      "name": "CVE-2019-9397",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9397"
    },
    {
      "name": "CVE-2019-9256",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9256"
    },
    {
      "name": "CVE-2019-9344",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9344"
    },
    {
      "name": "CVE-2019-9252",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9252"
    },
    {
      "name": "CVE-2019-2059",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2059"
    },
    {
      "name": "CVE-2019-2169",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2169"
    },
    {
      "name": "CVE-2019-2071",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2071"
    },
    {
      "name": "CVE-2019-2142",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2142"
    },
    {
      "name": "CVE-2019-9407",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9407"
    },
    {
      "name": "CVE-2019-9302",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9302"
    },
    {
      "name": "CVE-2019-9281",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9281"
    },
    {
      "name": "CVE-2019-9423",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9423"
    },
    {
      "name": "CVE-2019-9405",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9405"
    },
    {
      "name": "CVE-2019-2159",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2159"
    },
    {
      "name": "CVE-2019-9388",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9388"
    },
    {
      "name": "CVE-2019-9363",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9363"
    },
    {
      "name": "CVE-2019-9404",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9404"
    },
    {
      "name": "CVE-2019-9424",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9424"
    },
    {
      "name": "CVE-2019-9411",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9411"
    },
    {
      "name": "CVE-2019-9354",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9354"
    },
    {
      "name": "CVE-2019-2063",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2063"
    },
    {
      "name": "CVE-2019-2087",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2087"
    },
    {
      "name": "CVE-2019-9359",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9359"
    },
    {
      "name": "CVE-2019-9356",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9356"
    },
    {
      "name": "CVE-2019-2155",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2155"
    },
    {
      "name": "CVE-2019-9460",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9460"
    },
    {
      "name": "CVE-2019-9387",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9387"
    },
    {
      "name": "CVE-2019-9367",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9367"
    },
    {
      "name": "CVE-2019-9317",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9317"
    },
    {
      "name": "CVE-2019-2069",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2069"
    },
    {
      "name": "CVE-2019-9307",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9307"
    },
    {
      "name": "CVE-2019-9389",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9389"
    },
    {
      "name": "CVE-2019-2077",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2077"
    },
    {
      "name": "CVE-2019-9272",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9272"
    },
    {
      "name": "CVE-2019-2162",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2162"
    },
    {
      "name": "CVE-2019-9334",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9334"
    },
    {
      "name": "CVE-2019-9385",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9385"
    },
    {
      "name": "CVE-2019-9362",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9362"
    },
    {
      "name": "CVE-2019-9262",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9262"
    },
    {
      "name": "CVE-2019-9360",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9360"
    },
    {
      "name": "CVE-2019-2070",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2070"
    },
    {
      "name": "CVE-2019-9406",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9406"
    },
    {
      "name": "CVE-2019-9284",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9284"
    },
    {
      "name": "CVE-2019-9236",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9236"
    },
    {
      "name": "CVE-2019-2148",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2148"
    },
    {
      "name": "CVE-2019-2157",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2157"
    },
    {
      "name": "CVE-2019-9314",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9314"
    },
    {
      "name": "CVE-2019-9412",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9412"
    },
    {
      "name": "CVE-2019-2062",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2062"
    },
    {
      "name": "CVE-2019-9246",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9246"
    },
    {
      "name": "CVE-2019-9300",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9300"
    },
    {
      "name": "CVE-2019-9459",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9459"
    },
    {
      "name": "CVE-2019-9383",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9383"
    },
    {
      "name": "CVE-2019-9292",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9292"
    },
    {
      "name": "CVE-2019-9322",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9322"
    },
    {
      "name": "CVE-2019-9311",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9311"
    },
    {
      "name": "CVE-2019-9377",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9377"
    },
    {
      "name": "CVE-2019-9303",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9303"
    },
    {
      "name": "CVE-2019-9429",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9429"
    },
    {
      "name": "CVE-2019-9290",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9290"
    },
    {
      "name": "CVE-2019-9361",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9361"
    },
    {
      "name": "CVE-2019-9319",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9319"
    },
    {
      "name": "CVE-2019-9365",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9365"
    },
    {
      "name": "CVE-2019-2073",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2073"
    },
    {
      "name": "CVE-2019-9434",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9434"
    },
    {
      "name": "CVE-2019-9433",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9433"
    },
    {
      "name": "CVE-2019-9326",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9326"
    },
    {
      "name": "CVE-2019-9313",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9313"
    },
    {
      "name": "CVE-2019-9413",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9413"
    },
    {
      "name": "CVE-2019-9232",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9232"
    },
    {
      "name": "CVE-2019-9277",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9277"
    },
    {
      "name": "CVE-2019-9364",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9364"
    },
    {
      "name": "CVE-2019-9419",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9419"
    },
    {
      "name": "CVE-2019-9422",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9422"
    },
    {
      "name": "CVE-2019-9430",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9430"
    },
    {
      "name": "CVE-2019-2072",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2072"
    },
    {
      "name": "CVE-2019-2141",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2141"
    },
    {
      "name": "CVE-2019-9349",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9349"
    },
    {
      "name": "CVE-2019-9297",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9297"
    },
    {
      "name": "CVE-2019-9255",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9255"
    },
    {
      "name": "CVE-2019-9332",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9332"
    },
    {
      "name": "CVE-2019-2153",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2153"
    },
    {
      "name": "CVE-2019-2067",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2067"
    },
    {
      "name": "CVE-2019-2163",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2163"
    },
    {
      "name": "CVE-2019-9264",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9264"
    },
    {
      "name": "CVE-2019-2138",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2138"
    },
    {
      "name": "CVE-2019-2166",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2166"
    },
    {
      "name": "CVE-2019-9374",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9374"
    },
    {
      "name": "CVE-2019-9366",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9366"
    },
    {
      "name": "CVE-2019-2081",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2081"
    },
    {
      "name": "CVE-2019-9265",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9265"
    },
    {
      "name": "CVE-2019-9253",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9253"
    },
    {
      "name": "CVE-2019-9382",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9382"
    },
    {
      "name": "CVE-2019-9309",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9309"
    },
    {
      "name": "CVE-2019-2150",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2150"
    },
    {
      "name": "CVE-2019-9321",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9321"
    },
    {
      "name": "CVE-2019-2139",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2139"
    },
    {
      "name": "CVE-2019-9410",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9410"
    },
    {
      "name": "CVE-2019-2078",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2078"
    },
    {
      "name": "CVE-2019-2140",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2140"
    },
    {
      "name": "CVE-2019-9280",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9280"
    },
    {
      "name": "CVE-2019-2080",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2080"
    },
    {
      "name": "CVE-2019-9241",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9241"
    },
    {
      "name": "CVE-2019-2145",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2145"
    },
    {
      "name": "CVE-2019-2172",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2172"
    },
    {
      "name": "CVE-2019-9432",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9432"
    },
    {
      "name": "CVE-2019-2074",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2074"
    },
    {
      "name": "CVE-2019-9395",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9395"
    },
    {
      "name": "CVE-2019-9381",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9381"
    },
    {
      "name": "CVE-2019-9263",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9263"
    },
    {
      "name": "CVE-2019-9414",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9414"
    },
    {
      "name": "CVE-2019-9257",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9257"
    },
    {
      "name": "CVE-2019-2160",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2160"
    },
    {
      "name": "CVE-2019-9323",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9323"
    },
    {
      "name": "CVE-2019-9435",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9435"
    },
    {
      "name": "CVE-2019-2066",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2066"
    },
    {
      "name": "CVE-2019-9269",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9269"
    },
    {
      "name": "CVE-2019-9392",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9392"
    },
    {
      "name": "CVE-2019-9312",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9312"
    },
    {
      "name": "CVE-2019-2082",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2082"
    },
    {
      "name": "CVE-2019-2154",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2154"
    },
    {
      "name": "CVE-2019-9286",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9286"
    },
    {
      "name": "CVE-2019-9261",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9261"
    },
    {
      "name": "CVE-2019-9420",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9420"
    },
    {
      "name": "CVE-2019-9342",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9342"
    },
    {
      "name": "CVE-2019-9390",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9390"
    },
    {
      "name": "CVE-2019-2147",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2147"
    },
    {
      "name": "CVE-2019-2064",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2064"
    },
    {
      "name": "CVE-2019-9247",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9247"
    },
    {
      "name": "CVE-2019-9258",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9258"
    },
    {
      "name": "CVE-2019-2164",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2164"
    },
    {
      "name": "CVE-2019-9331",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9331"
    },
    {
      "name": "CVE-2019-2084",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2084"
    },
    {
      "name": "CVE-2019-9335",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9335"
    },
    {
      "name": "CVE-2019-9250",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9250"
    },
    {
      "name": "CVE-2019-2055",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2055"
    },
    {
      "name": "CVE-2019-9308",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9308"
    },
    {
      "name": "CVE-2019-9379",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9379"
    },
    {
      "name": "CVE-2019-9242",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9242"
    },
    {
      "name": "CVE-2019-9353",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9353"
    },
    {
      "name": "CVE-2019-2083",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2083"
    },
    {
      "name": "CVE-2019-2079",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2079"
    },
    {
      "name": "CVE-2019-9337",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9337"
    },
    {
      "name": "CVE-2019-9237",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9237"
    },
    {
      "name": "CVE-2019-9283",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9283"
    },
    {
      "name": "CVE-2019-9234",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9234"
    },
    {
      "name": "CVE-2019-9243",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9243"
    },
    {
      "name": "CVE-2019-9259",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9259"
    },
    {
      "name": "CVE-2019-9310",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9310"
    },
    {
      "name": "CVE-2019-9301",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9301"
    },
    {
      "name": "CVE-2019-9279",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9279"
    },
    {
      "name": "CVE-2019-9369",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9369"
    },
    {
      "name": "CVE-2019-2065",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2065"
    },
    {
      "name": "CVE-2019-9299",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9299"
    },
    {
      "name": "CVE-2019-9235",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9235"
    },
    {
      "name": "CVE-2019-9346",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9346"
    },
    {
      "name": "CVE-2019-9376",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9376"
    },
    {
      "name": "CVE-2019-9370",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9370"
    },
    {
      "name": "CVE-2019-9289",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9289"
    },
    {
      "name": "CVE-2019-9329",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9329"
    },
    {
      "name": "CVE-2019-9327",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9327"
    },
    {
      "name": "CVE-2018-9489",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-9489"
    },
    {
      "name": "CVE-2019-9402",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9402"
    },
    {
      "name": "CVE-2019-2144",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2144"
    },
    {
      "name": "CVE-2019-9398",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9398"
    },
    {
      "name": "CVE-2019-9315",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9315"
    },
    {
      "name": "CVE-2019-9338",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9338"
    },
    {
      "name": "CVE-2019-9415",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9415"
    },
    {
      "name": "CVE-2019-9440",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9440"
    },
    {
      "name": "CVE-2019-9287",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9287"
    },
    {
      "name": "CVE-2019-9285",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9285"
    },
    {
      "name": "CVE-2019-9320",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9320"
    },
    {
      "name": "CVE-2019-9316",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9316"
    },
    {
      "name": "CVE-2019-9233",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9233"
    },
    {
      "name": "CVE-2019-9355",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9355"
    },
    {
      "name": "CVE-2019-2152",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2152"
    },
    {
      "name": "CVE-2019-2165",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2165"
    },
    {
      "name": "CVE-2019-9380",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9380"
    },
    {
      "name": "CVE-2019-9368",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9368"
    },
    {
      "name": "CVE-2019-9372",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9372"
    },
    {
      "name": "CVE-2019-9318",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9318"
    },
    {
      "name": "CVE-2019-9403",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9403"
    },
    {
      "name": "CVE-2018-9425",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-9425"
    },
    {
      "name": "CVE-2019-9244",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9244"
    },
    {
      "name": "CVE-2019-9295",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9295"
    },
    {
      "name": "CVE-2019-9306",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9306"
    },
    {
      "name": "CVE-2019-9375",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9375"
    },
    {
      "name": "CVE-2019-2146",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2146"
    },
    {
      "name": "CVE-2019-2068",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2068"
    },
    {
      "name": "CVE-2019-2171",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2171"
    },
    {
      "name": "CVE-2019-9268",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9268"
    },
    {
      "name": "CVE-2019-9400",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9400"
    },
    {
      "name": "CVE-2019-9336",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9336"
    },
    {
      "name": "CVE-2019-9416",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9416"
    },
    {
      "name": "CVE-2019-9438",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9438"
    },
    {
      "name": "CVE-2019-9343",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9343"
    },
    {
      "name": "CVE-2019-9401",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9401"
    },
    {
      "name": "CVE-2019-2167",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2167"
    },
    {
      "name": "CVE-2019-9288",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9288"
    },
    {
      "name": "CVE-2019-9238",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9238"
    },
    {
      "name": "CVE-2019-9333",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9333"
    },
    {
      "name": "CVE-2019-9347",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9347"
    },
    {
      "name": "CVE-2019-9325",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9325"
    },
    {
      "name": "CVE-2019-2075",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2075"
    },
    {
      "name": "CVE-2019-9240",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9240"
    },
    {
      "name": "CVE-2019-2149",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2149"
    },
    {
      "name": "CVE-2019-9294",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9294"
    },
    {
      "name": "CVE-2019-9421",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9421"
    },
    {
      "name": "CVE-2019-9239",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9239"
    },
    {
      "name": "CVE-2019-9341",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9341"
    },
    {
      "name": "CVE-2019-2156",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2156"
    },
    {
      "name": "CVE-2019-9418",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9418"
    },
    {
      "name": "CVE-2019-9304",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9304"
    },
    {
      "name": "CVE-2019-2158",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2158"
    },
    {
      "name": "CVE-2019-2061",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2061"
    },
    {
      "name": "CVE-2019-9328",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9328"
    },
    {
      "name": "CVE-2019-9409",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9409"
    },
    {
      "name": "CVE-2019-9251",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9251"
    },
    {
      "name": "CVE-2019-9386",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9386"
    },
    {
      "name": "CVE-2019-9378",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9378"
    },
    {
      "name": "CVE-2019-9357",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9357"
    },
    {
      "name": "CVE-2019-9266",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9266"
    },
    {
      "name": "CVE-2019-9431",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9431"
    },
    {
      "name": "CVE-2019-2143",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2143"
    },
    {
      "name": "CVE-2019-2168",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2168"
    },
    {
      "name": "CVE-2019-9417",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9417"
    },
    {
      "name": "CVE-2019-9394",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9394"
    },
    {
      "name": "CVE-2019-9282",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9282"
    },
    {
      "name": "CVE-2019-9391",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9391"
    },
    {
      "name": "CVE-2019-2170",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2170"
    },
    {
      "name": "CVE-2019-9291",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9291"
    },
    {
      "name": "CVE-2019-9296",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9296"
    },
    {
      "name": "CVE-2019-9351",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9351"
    },
    {
      "name": "CVE-2019-2076",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2076"
    },
    {
      "name": "CVE-2019-2086",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2086"
    },
    {
      "name": "CVE-2019-9399",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9399"
    },
    {
      "name": "CVE-2019-2151",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2151"
    },
    {
      "name": "CVE-2019-9425",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9425"
    },
    {
      "name": "CVE-2019-9384",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9384"
    },
    {
      "name": "CVE-2019-9408",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9408"
    },
    {
      "name": "CVE-2019-9305",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9305"
    },
    {
      "name": "CVE-2019-2085",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2085"
    },
    {
      "name": "CVE-2019-9249",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9249"
    },
    {
      "name": "CVE-2019-9330",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9330"
    },
    {
      "name": "CVE-2019-9260",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9260"
    },
    {
      "name": "CVE-2019-2060",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2060"
    },
    {
      "name": "CVE-2019-9396",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9396"
    },
    {
      "name": "CVE-2019-9293",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9293"
    },
    {
      "name": "CVE-2019-9428",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9428"
    },
    {
      "name": "CVE-2019-9358",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9358"
    },
    {
      "name": "CVE-2019-9371",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9371"
    },
    {
      "name": "CVE-2019-9393",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9393"
    },
    {
      "name": "CVE-2019-2161",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2161"
    },
    {
      "name": "CVE-2019-9278",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9278"
    },
    {
      "name": "CVE-2019-9373",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9373"
    },
    {
      "name": "CVE-2019-9298",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9298"
    }
  ],
  "links": [],
  "reference": "CERTFR-2019-AVI-405",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2019-08-21T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Google Android.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance\net une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Google Android",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Android du 20 ao\u00fbt 2019",
      "url": "https://source.android.com/security/bulletin/android-q.html"
    }
  ]
}

CERTFR-2019-AVI-405

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Google	Android	Android version Q sans le correctif de sécurité 2019-09-01

References

Title

Publication Time

Tags

Bulletin de sécurité Android du 20 août 2019

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Android version Q sans le correctif de s\u00e9curit\u00e9 2019-09-01",
      "product": {
        "name": "Android",
        "vendor": {
          "name": "Google",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2019-9348",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9348"
    },
    {
      "name": "CVE-2019-9352",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9352"
    },
    {
      "name": "CVE-2019-9350",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9350"
    },
    {
      "name": "CVE-2019-9427",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9427"
    },
    {
      "name": "CVE-2019-9397",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9397"
    },
    {
      "name": "CVE-2019-9256",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9256"
    },
    {
      "name": "CVE-2019-9344",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9344"
    },
    {
      "name": "CVE-2019-9252",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9252"
    },
    {
      "name": "CVE-2019-2059",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2059"
    },
    {
      "name": "CVE-2019-2169",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2169"
    },
    {
      "name": "CVE-2019-2071",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2071"
    },
    {
      "name": "CVE-2019-2142",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2142"
    },
    {
      "name": "CVE-2019-9407",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9407"
    },
    {
      "name": "CVE-2019-9302",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9302"
    },
    {
      "name": "CVE-2019-9281",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9281"
    },
    {
      "name": "CVE-2019-9423",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9423"
    },
    {
      "name": "CVE-2019-9405",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9405"
    },
    {
      "name": "CVE-2019-2159",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2159"
    },
    {
      "name": "CVE-2019-9388",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9388"
    },
    {
      "name": "CVE-2019-9363",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9363"
    },
    {
      "name": "CVE-2019-9404",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9404"
    },
    {
      "name": "CVE-2019-9424",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9424"
    },
    {
      "name": "CVE-2019-9411",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9411"
    },
    {
      "name": "CVE-2019-9354",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9354"
    },
    {
      "name": "CVE-2019-2063",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2063"
    },
    {
      "name": "CVE-2019-2087",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2087"
    },
    {
      "name": "CVE-2019-9359",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9359"
    },
    {
      "name": "CVE-2019-9356",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9356"
    },
    {
      "name": "CVE-2019-2155",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2155"
    },
    {
      "name": "CVE-2019-9460",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9460"
    },
    {
      "name": "CVE-2019-9387",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9387"
    },
    {
      "name": "CVE-2019-9367",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9367"
    },
    {
      "name": "CVE-2019-9317",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9317"
    },
    {
      "name": "CVE-2019-2069",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2069"
    },
    {
      "name": "CVE-2019-9307",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9307"
    },
    {
      "name": "CVE-2019-9389",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9389"
    },
    {
      "name": "CVE-2019-2077",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2077"
    },
    {
      "name": "CVE-2019-9272",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9272"
    },
    {
      "name": "CVE-2019-2162",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2162"
    },
    {
      "name": "CVE-2019-9334",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9334"
    },
    {
      "name": "CVE-2019-9385",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9385"
    },
    {
      "name": "CVE-2019-9362",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9362"
    },
    {
      "name": "CVE-2019-9262",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9262"
    },
    {
      "name": "CVE-2019-9360",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9360"
    },
    {
      "name": "CVE-2019-2070",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2070"
    },
    {
      "name": "CVE-2019-9406",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9406"
    },
    {
      "name": "CVE-2019-9284",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9284"
    },
    {
      "name": "CVE-2019-9236",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9236"
    },
    {
      "name": "CVE-2019-2148",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2148"
    },
    {
      "name": "CVE-2019-2157",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2157"
    },
    {
      "name": "CVE-2019-9314",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9314"
    },
    {
      "name": "CVE-2019-9412",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9412"
    },
    {
      "name": "CVE-2019-2062",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2062"
    },
    {
      "name": "CVE-2019-9246",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9246"
    },
    {
      "name": "CVE-2019-9300",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9300"
    },
    {
      "name": "CVE-2019-9459",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9459"
    },
    {
      "name": "CVE-2019-9383",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9383"
    },
    {
      "name": "CVE-2019-9292",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9292"
    },
    {
      "name": "CVE-2019-9322",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9322"
    },
    {
      "name": "CVE-2019-9311",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9311"
    },
    {
      "name": "CVE-2019-9377",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9377"
    },
    {
      "name": "CVE-2019-9303",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9303"
    },
    {
      "name": "CVE-2019-9429",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9429"
    },
    {
      "name": "CVE-2019-9290",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9290"
    },
    {
      "name": "CVE-2019-9361",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9361"
    },
    {
      "name": "CVE-2019-9319",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9319"
    },
    {
      "name": "CVE-2019-9365",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9365"
    },
    {
      "name": "CVE-2019-2073",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2073"
    },
    {
      "name": "CVE-2019-9434",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9434"
    },
    {
      "name": "CVE-2019-9433",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9433"
    },
    {
      "name": "CVE-2019-9326",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9326"
    },
    {
      "name": "CVE-2019-9313",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9313"
    },
    {
      "name": "CVE-2019-9413",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9413"
    },
    {
      "name": "CVE-2019-9232",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9232"
    },
    {
      "name": "CVE-2019-9277",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9277"
    },
    {
      "name": "CVE-2019-9364",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9364"
    },
    {
      "name": "CVE-2019-9419",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9419"
    },
    {
      "name": "CVE-2019-9422",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9422"
    },
    {
      "name": "CVE-2019-9430",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9430"
    },
    {
      "name": "CVE-2019-2072",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2072"
    },
    {
      "name": "CVE-2019-2141",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2141"
    },
    {
      "name": "CVE-2019-9349",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9349"
    },
    {
      "name": "CVE-2019-9297",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9297"
    },
    {
      "name": "CVE-2019-9255",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9255"
    },
    {
      "name": "CVE-2019-9332",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9332"
    },
    {
      "name": "CVE-2019-2153",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2153"
    },
    {
      "name": "CVE-2019-2067",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2067"
    },
    {
      "name": "CVE-2019-2163",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2163"
    },
    {
      "name": "CVE-2019-9264",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9264"
    },
    {
      "name": "CVE-2019-2138",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2138"
    },
    {
      "name": "CVE-2019-2166",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2166"
    },
    {
      "name": "CVE-2019-9374",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9374"
    },
    {
      "name": "CVE-2019-9366",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9366"
    },
    {
      "name": "CVE-2019-2081",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2081"
    },
    {
      "name": "CVE-2019-9265",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9265"
    },
    {
      "name": "CVE-2019-9253",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9253"
    },
    {
      "name": "CVE-2019-9382",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9382"
    },
    {
      "name": "CVE-2019-9309",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9309"
    },
    {
      "name": "CVE-2019-2150",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2150"
    },
    {
      "name": "CVE-2019-9321",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9321"
    },
    {
      "name": "CVE-2019-2139",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2139"
    },
    {
      "name": "CVE-2019-9410",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9410"
    },
    {
      "name": "CVE-2019-2078",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2078"
    },
    {
      "name": "CVE-2019-2140",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2140"
    },
    {
      "name": "CVE-2019-9280",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9280"
    },
    {
      "name": "CVE-2019-2080",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2080"
    },
    {
      "name": "CVE-2019-9241",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9241"
    },
    {
      "name": "CVE-2019-2145",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2145"
    },
    {
      "name": "CVE-2019-2172",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2172"
    },
    {
      "name": "CVE-2019-9432",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9432"
    },
    {
      "name": "CVE-2019-2074",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2074"
    },
    {
      "name": "CVE-2019-9395",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9395"
    },
    {
      "name": "CVE-2019-9381",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9381"
    },
    {
      "name": "CVE-2019-9263",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9263"
    },
    {
      "name": "CVE-2019-9414",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9414"
    },
    {
      "name": "CVE-2019-9257",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9257"
    },
    {
      "name": "CVE-2019-2160",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2160"
    },
    {
      "name": "CVE-2019-9323",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9323"
    },
    {
      "name": "CVE-2019-9435",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9435"
    },
    {
      "name": "CVE-2019-2066",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2066"
    },
    {
      "name": "CVE-2019-9269",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9269"
    },
    {
      "name": "CVE-2019-9392",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9392"
    },
    {
      "name": "CVE-2019-9312",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9312"
    },
    {
      "name": "CVE-2019-2082",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2082"
    },
    {
      "name": "CVE-2019-2154",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2154"
    },
    {
      "name": "CVE-2019-9286",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9286"
    },
    {
      "name": "CVE-2019-9261",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9261"
    },
    {
      "name": "CVE-2019-9420",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9420"
    },
    {
      "name": "CVE-2019-9342",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9342"
    },
    {
      "name": "CVE-2019-9390",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9390"
    },
    {
      "name": "CVE-2019-2147",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2147"
    },
    {
      "name": "CVE-2019-2064",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2064"
    },
    {
      "name": "CVE-2019-9247",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9247"
    },
    {
      "name": "CVE-2019-9258",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9258"
    },
    {
      "name": "CVE-2019-2164",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2164"
    },
    {
      "name": "CVE-2019-9331",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9331"
    },
    {
      "name": "CVE-2019-2084",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2084"
    },
    {
      "name": "CVE-2019-9335",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9335"
    },
    {
      "name": "CVE-2019-9250",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9250"
    },
    {
      "name": "CVE-2019-2055",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2055"
    },
    {
      "name": "CVE-2019-9308",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9308"
    },
    {
      "name": "CVE-2019-9379",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9379"
    },
    {
      "name": "CVE-2019-9242",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9242"
    },
    {
      "name": "CVE-2019-9353",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9353"
    },
    {
      "name": "CVE-2019-2083",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2083"
    },
    {
      "name": "CVE-2019-2079",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2079"
    },
    {
      "name": "CVE-2019-9337",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9337"
    },
    {
      "name": "CVE-2019-9237",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9237"
    },
    {
      "name": "CVE-2019-9283",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9283"
    },
    {
      "name": "CVE-2019-9234",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9234"
    },
    {
      "name": "CVE-2019-9243",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9243"
    },
    {
      "name": "CVE-2019-9259",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9259"
    },
    {
      "name": "CVE-2019-9310",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9310"
    },
    {
      "name": "CVE-2019-9301",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9301"
    },
    {
      "name": "CVE-2019-9279",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9279"
    },
    {
      "name": "CVE-2019-9369",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9369"
    },
    {
      "name": "CVE-2019-2065",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2065"
    },
    {
      "name": "CVE-2019-9299",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9299"
    },
    {
      "name": "CVE-2019-9235",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9235"
    },
    {
      "name": "CVE-2019-9346",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9346"
    },
    {
      "name": "CVE-2019-9376",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9376"
    },
    {
      "name": "CVE-2019-9370",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9370"
    },
    {
      "name": "CVE-2019-9289",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9289"
    },
    {
      "name": "CVE-2019-9329",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9329"
    },
    {
      "name": "CVE-2019-9327",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9327"
    },
    {
      "name": "CVE-2018-9489",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-9489"
    },
    {
      "name": "CVE-2019-9402",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9402"
    },
    {
      "name": "CVE-2019-2144",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2144"
    },
    {
      "name": "CVE-2019-9398",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9398"
    },
    {
      "name": "CVE-2019-9315",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9315"
    },
    {
      "name": "CVE-2019-9338",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9338"
    },
    {
      "name": "CVE-2019-9415",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9415"
    },
    {
      "name": "CVE-2019-9440",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9440"
    },
    {
      "name": "CVE-2019-9287",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9287"
    },
    {
      "name": "CVE-2019-9285",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9285"
    },
    {
      "name": "CVE-2019-9320",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9320"
    },
    {
      "name": "CVE-2019-9316",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9316"
    },
    {
      "name": "CVE-2019-9233",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9233"
    },
    {
      "name": "CVE-2019-9355",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9355"
    },
    {
      "name": "CVE-2019-2152",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2152"
    },
    {
      "name": "CVE-2019-2165",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2165"
    },
    {
      "name": "CVE-2019-9380",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9380"
    },
    {
      "name": "CVE-2019-9368",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9368"
    },
    {
      "name": "CVE-2019-9372",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9372"
    },
    {
      "name": "CVE-2019-9318",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9318"
    },
    {
      "name": "CVE-2019-9403",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9403"
    },
    {
      "name": "CVE-2018-9425",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-9425"
    },
    {
      "name": "CVE-2019-9244",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9244"
    },
    {
      "name": "CVE-2019-9295",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9295"
    },
    {
      "name": "CVE-2019-9306",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9306"
    },
    {
      "name": "CVE-2019-9375",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9375"
    },
    {
      "name": "CVE-2019-2146",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2146"
    },
    {
      "name": "CVE-2019-2068",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2068"
    },
    {
      "name": "CVE-2019-2171",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2171"
    },
    {
      "name": "CVE-2019-9268",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9268"
    },
    {
      "name": "CVE-2019-9400",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9400"
    },
    {
      "name": "CVE-2019-9336",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9336"
    },
    {
      "name": "CVE-2019-9416",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9416"
    },
    {
      "name": "CVE-2019-9438",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9438"
    },
    {
      "name": "CVE-2019-9343",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9343"
    },
    {
      "name": "CVE-2019-9401",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9401"
    },
    {
      "name": "CVE-2019-2167",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2167"
    },
    {
      "name": "CVE-2019-9288",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9288"
    },
    {
      "name": "CVE-2019-9238",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9238"
    },
    {
      "name": "CVE-2019-9333",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9333"
    },
    {
      "name": "CVE-2019-9347",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9347"
    },
    {
      "name": "CVE-2019-9325",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9325"
    },
    {
      "name": "CVE-2019-2075",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2075"
    },
    {
      "name": "CVE-2019-9240",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9240"
    },
    {
      "name": "CVE-2019-2149",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2149"
    },
    {
      "name": "CVE-2019-9294",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9294"
    },
    {
      "name": "CVE-2019-9421",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9421"
    },
    {
      "name": "CVE-2019-9239",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9239"
    },
    {
      "name": "CVE-2019-9341",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9341"
    },
    {
      "name": "CVE-2019-2156",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2156"
    },
    {
      "name": "CVE-2019-9418",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9418"
    },
    {
      "name": "CVE-2019-9304",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9304"
    },
    {
      "name": "CVE-2019-2158",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2158"
    },
    {
      "name": "CVE-2019-2061",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2061"
    },
    {
      "name": "CVE-2019-9328",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9328"
    },
    {
      "name": "CVE-2019-9409",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9409"
    },
    {
      "name": "CVE-2019-9251",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9251"
    },
    {
      "name": "CVE-2019-9386",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9386"
    },
    {
      "name": "CVE-2019-9378",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9378"
    },
    {
      "name": "CVE-2019-9357",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9357"
    },
    {
      "name": "CVE-2019-9266",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9266"
    },
    {
      "name": "CVE-2019-9431",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9431"
    },
    {
      "name": "CVE-2019-2143",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2143"
    },
    {
      "name": "CVE-2019-2168",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2168"
    },
    {
      "name": "CVE-2019-9417",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9417"
    },
    {
      "name": "CVE-2019-9394",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9394"
    },
    {
      "name": "CVE-2019-9282",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9282"
    },
    {
      "name": "CVE-2019-9391",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9391"
    },
    {
      "name": "CVE-2019-2170",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2170"
    },
    {
      "name": "CVE-2019-9291",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9291"
    },
    {
      "name": "CVE-2019-9296",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9296"
    },
    {
      "name": "CVE-2019-9351",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9351"
    },
    {
      "name": "CVE-2019-2076",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2076"
    },
    {
      "name": "CVE-2019-2086",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2086"
    },
    {
      "name": "CVE-2019-9399",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9399"
    },
    {
      "name": "CVE-2019-2151",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2151"
    },
    {
      "name": "CVE-2019-9425",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9425"
    },
    {
      "name": "CVE-2019-9384",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9384"
    },
    {
      "name": "CVE-2019-9408",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9408"
    },
    {
      "name": "CVE-2019-9305",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9305"
    },
    {
      "name": "CVE-2019-2085",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2085"
    },
    {
      "name": "CVE-2019-9249",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9249"
    },
    {
      "name": "CVE-2019-9330",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9330"
    },
    {
      "name": "CVE-2019-9260",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9260"
    },
    {
      "name": "CVE-2019-2060",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2060"
    },
    {
      "name": "CVE-2019-9396",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9396"
    },
    {
      "name": "CVE-2019-9293",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9293"
    },
    {
      "name": "CVE-2019-9428",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9428"
    },
    {
      "name": "CVE-2019-9358",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9358"
    },
    {
      "name": "CVE-2019-9371",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9371"
    },
    {
      "name": "CVE-2019-9393",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9393"
    },
    {
      "name": "CVE-2019-2161",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-2161"
    },
    {
      "name": "CVE-2019-9278",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9278"
    },
    {
      "name": "CVE-2019-9373",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9373"
    },
    {
      "name": "CVE-2019-9298",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-9298"
    }
  ],
  "links": [],
  "reference": "CERTFR-2019-AVI-405",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2019-08-21T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Google Android.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance\net une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Google Android",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Android du 20 ao\u00fbt 2019",
      "url": "https://source.android.com/security/bulletin/android-q.html"
    }
  ]
}

CNVD-2025-00305

Vulnerability from cnvd - Published: 2025-01-03

Title

Google Android信息泄露漏洞（CNVD-2025-00305）

Description

Android是美国谷歌（Google）公司和开放手持设备联盟（简称OHA）共同开发的一套以Linux为基础的开源操作系统。 Android中存在安全漏洞。攻击者可借助WiFi广播利用该漏洞绕过权限检测，泄露有关用户设备的信息，例如WiFi网络名称，BSSID，本地IP地址，DNS服务器信息和MAC地址。攻击者可利用该漏洞获取目标系统上的标识数据。

Severity

中

Patch Name

Google Android信息泄露漏洞（CNVD-2025-00305）的补丁

Patch Description

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： http://android.com/

Reference

https://securitytracker.com/id/1041590

Impacted products

Name
['Google Android 7.0', 'Google Android 7.1.1', 'Google Android 7.1.2', 'Google Android 8.0', 'Google Android 8.1', 'Google Android 9.0']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-9489"
    }
  },
  "description": "Android\u662f\u7f8e\u56fd\u8c37\u6b4c\uff08Google\uff09\u516c\u53f8\u548c\u5f00\u653e\u624b\u6301\u8bbe\u5907\u8054\u76df\uff08\u7b80\u79f0OHA\uff09\u5171\u540c\u5f00\u53d1\u7684\u4e00\u5957\u4ee5Linux\u4e3a\u57fa\u7840\u7684\u5f00\u6e90\u64cd\u4f5c\u7cfb\u7edf\u3002\n\nAndroid\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9WiFi\u5e7f\u64ad\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7\u6743\u9650\u68c0\u6d4b\uff0c\u6cc4\u9732\u6709\u5173\u7528\u6237\u8bbe\u5907\u7684\u4fe1\u606f\uff0c\u4f8b\u5982WiFi\u7f51\u7edc\u540d\u79f0\uff0cBSSID\uff0c\u672c\u5730IP\u5730\u5740\uff0cDNS\u670d\u52a1\u5668\u4fe1\u606f\u548cMAC\u5730\u5740\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u76ee\u6807\u7cfb\u7edf\u4e0a\u7684\u6807\u8bc6\u6570\u636e\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttp://android.com/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2025-00305",
  "openTime": "2025-01-03",
  "patchDescription": "Android\u662f\u7f8e\u56fd\u8c37\u6b4c\uff08Google\uff09\u516c\u53f8\u548c\u5f00\u653e\u624b\u6301\u8bbe\u5907\u8054\u76df\uff08\u7b80\u79f0OHA\uff09\u5171\u540c\u5f00\u53d1\u7684\u4e00\u5957\u4ee5Linux\u4e3a\u57fa\u7840\u7684\u5f00\u6e90\u64cd\u4f5c\u7cfb\u7edf\u3002\r\n\r\nAndroid\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9WiFi\u5e7f\u64ad\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7\u6743\u9650\u68c0\u6d4b\uff0c\u6cc4\u9732\u6709\u5173\u7528\u6237\u8bbe\u5907\u7684\u4fe1\u606f\uff0c\u4f8b\u5982WiFi\u7f51\u7edc\u540d\u79f0\uff0cBSSID\uff0c\u672c\u5730IP\u5730\u5740\uff0cDNS\u670d\u52a1\u5668\u4fe1\u606f\u548cMAC\u5730\u5740\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u76ee\u6807\u7cfb\u7edf\u4e0a\u7684\u6807\u8bc6\u6570\u636e\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Google Android\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2025-00305\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Google Android 7.0",
      "Google Android 7.1.1",
      "Google Android 7.1.2",
      "Google Android 8.0",
      "Google Android 8.1",
      "Google Android 9.0"
    ]
  },
  "referenceLink": "https://securitytracker.com/id/1041590",
  "serverity": "\u4e2d",
  "submitTime": "2018-08-31",
  "title": "Google Android\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2025-00305\uff09"
}

GHSA-82JX-F3W3-HW7F

Vulnerability from github – Published: 2022-05-14 01:49 – Updated: 2022-05-14 01:49

Details

Severity ?

7.5 (High)


                  
                    CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2018-9489"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-200"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2018-11-06T17:29:00Z",
    "severity": "HIGH"
  },
  "details": "When wifi is switched, function sendNetworkStateChangeBroadcast of WifiStateMachine.java broadcasts an intent including detailed wifi network information. This could lead to information disclosure with no execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0 Android ID: A-77286245.",
  "id": "GHSA-82jx-f3w3-hw7f",
  "modified": "2022-05-14T01:49:44Z",
  "published": "2022-05-14T01:49:44Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-9489"
    },
    {
      "type": "WEB",
      "url": "https://wwws.nightwatchcybersecurity.com/2018/08/29/sensitive-data-exposure-via-wifi-broadcasts-in-android-os-cve-2018-9489"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id/1041590"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
      "type": "CVSS_V3"
    }
  ]
}

FKIE_CVE-2018-9489

Vulnerability from fkie_nvd - Published: 2018-11-06 17:29 - Updated: 2024-11-21 04:15

Severity ?

7.5 (High) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Summary

References

URL	Tags
security@android.com	http://www.securitytracker.com/id/1041590	Third Party Advisory, VDB Entry
security@android.com	https://wwws.nightwatchcybersecurity.com/2018/08/29/sensitive-data-exposure-via-wifi-broadcasts-in-android-os-cve-2018-9489/	Mitigation, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id/1041590	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://wwws.nightwatchcybersecurity.com/2018/08/29/sensitive-data-exposure-via-wifi-broadcasts-in-android-os-cve-2018-9489/	Mitigation, Third Party Advisory

Impacted products

Vendor	Product	Version
google	android	7.0
google	android	7.1.1
google	android	7.1.2
google	android	8.0
google	android	8.1
google	android	9.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:7.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "09E6085C-A61E-4A89-BF80-EDD9A7DF1E47",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:7.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D835D592-2423-44C6-804A-3AD010112E7C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:7.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "568E2561-A068-46A2-B331-BBA91FC96F0C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:8.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "B578E383-0D77-4AC7-9C81-3F0B8C18E033",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:8.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "B06BE74B-83F4-41A3-8AD3-2E6248F7B0B2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8DFAAD08-36DA-4C95-8200-C29FE5B6B854",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "When wifi is switched, function sendNetworkStateChangeBroadcast of WifiStateMachine.java broadcasts an intent including detailed wifi network information. This could lead to information disclosure with no execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0 Android ID: A-77286245."
    },
    {
      "lang": "es",
      "value": "Cuando WiFi est\u00e1 habilitado, la funci\u00f3n sendNetworkStateChangeBroadcast de WifiStateMachine.java transmite un intent que incluye informaci\u00f3n detallada de la red WiFi. Esto podr\u00eda llevar a una divulgaci\u00f3n de informaci\u00f3n sin necesitar privilegios de ejecuci\u00f3n. No se necesita interacci\u00f3n del usuario para explotarlo. Producto: Versiones de Android: Android-7.0, Android-7.1.1, Android-7.1.2, Android-8.0, Android-8.1 y Android-9.0. Android ID: A-77286245."
    }
  ],
  "id": "CVE-2018-9489",
  "lastModified": "2024-11-21T04:15:34.530",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 5.0,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2018-11-06T17:29:01.473",
  "references": [
    {
      "source": "security@android.com",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securitytracker.com/id/1041590"
    },
    {
      "source": "security@android.com",
      "tags": [
        "Mitigation",
        "Third Party Advisory"
      ],
      "url": "https://wwws.nightwatchcybersecurity.com/2018/08/29/sensitive-data-exposure-via-wifi-broadcasts-in-android-os-cve-2018-9489/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securitytracker.com/id/1041590"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mitigation",
        "Third Party Advisory"
      ],
      "url": "https://wwws.nightwatchcybersecurity.com/2018/08/29/sensitive-data-exposure-via-wifi-broadcasts-in-android-os-cve-2018-9489/"
    }
  ],
  "sourceIdentifier": "security@android.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-200"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2018-9489

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Aliases

CVE-2018-9489

Aliases

CVE-2018-9489

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2018-9489",
    "description": "When wifi is switched, function sendNetworkStateChangeBroadcast of WifiStateMachine.java broadcasts an intent including detailed wifi network information. This could lead to information disclosure with no execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0 Android ID: A-77286245.",
    "id": "GSD-2018-9489",
    "references": [
      "https://packetstormsecurity.com/files/cve/CVE-2018-9489"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2018-9489"
      ],
      "details": "When wifi is switched, function sendNetworkStateChangeBroadcast of WifiStateMachine.java broadcasts an intent including detailed wifi network information. This could lead to information disclosure with no execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0 Android ID: A-77286245.",
      "id": "GSD-2018-9489",
      "modified": "2023-12-13T01:22:33.771415Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security@android.com",
        "DATE_PUBLIC": "2018-10-31T00:00:00",
        "ID": "CVE-2018-9489",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Android",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Google Inc."
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "When wifi is switched, function sendNetworkStateChangeBroadcast of WifiStateMachine.java broadcasts an intent including detailed wifi network information. This could lead to information disclosure with no execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0 Android ID: A-77286245."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Information Disclosure"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://wwws.nightwatchcybersecurity.com/2018/08/29/sensitive-data-exposure-via-wifi-broadcasts-in-android-os-cve-2018-9489/",
            "refsource": "MISC",
            "url": "https://wwws.nightwatchcybersecurity.com/2018/08/29/sensitive-data-exposure-via-wifi-broadcasts-in-android-os-cve-2018-9489/"
          },
          {
            "name": "1041590",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id/1041590"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:google:android:7.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:google:android:7.1.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:google:android:8.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:google:android:8.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:google:android:7.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security@android.com",
          "ID": "CVE-2018-9489"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "When wifi is switched, function sendNetworkStateChangeBroadcast of WifiStateMachine.java broadcasts an intent including detailed wifi network information. This could lead to information disclosure with no execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0 Android ID: A-77286245."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-200"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://wwws.nightwatchcybersecurity.com/2018/08/29/sensitive-data-exposure-via-wifi-broadcasts-in-android-os-cve-2018-9489/",
              "refsource": "MISC",
              "tags": [
                "Mitigation",
                "Third Party Advisory"
              ],
              "url": "https://wwws.nightwatchcybersecurity.com/2018/08/29/sensitive-data-exposure-via-wifi-broadcasts-in-android-os-cve-2018-9489/"
            },
            {
              "name": "1041590",
              "refsource": "SECTRACK",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securitytracker.com/id/1041590"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 3.6
        }
      },
      "lastModifiedDate": "2018-12-13T15:00Z",
      "publishedDate": "2018-11-06T17:29Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2018-9489 (GCVE-0-2018-9489)

CERTFR-2019-AVI-405

Solution

CERTFR-2019-AVI-405

Solution

CNVD-2025-00305

GHSA-82JX-F3W3-HW7F

FKIE_CVE-2018-9489

GSD-2018-9489

Tags

Sightings

Nomenclature