Use-after-free vulnerability in Android kernel's synaptics_dsx_htc touchscreen driver allows for local privilege escalation

Use-after-free vulnerability in Android kernel's synaptics_dsx_htc touchscreen driver allows for local privilege escalation

CVE-2019-9273 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

In the Android kernel in the synaptics_dsx_htc touchscreen driver there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

Learn more about our Cis Benchmark Audit For Google Android.