Untrusted Pointer Dereference in apr_cb_func: Arbitrary Code Execution Vulnerability

CVE-2018-3563 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, untrusted pointer dereference in apr_cb_func can lead to an arbitrary code execution.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.