VYPR
Unrated severityNVD Advisory· Published Nov 19, 2024· Updated Nov 21, 2024

CVE-2018-9370

CVE-2018-9370

Description

In download.c there is a special mode allowing user to download data into memory and causing possible memory corruptions due to missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.