cvedb.io
CVE-2018-6246
MEDIUM · CVSS 5.3
EPSS exploitation probability: 0%
Published 2018-05-10T14:29:00.533 · Last modified 2026-06-17T02:01:34.237

Summary

In Android before the 2018-05-05 security patch level, NVIDIA Widevine Trustlet contains a vulnerability in Widevine TA where the software reads data past the end, or before the beginning, of the intended buffer, which may lead to Information Disclosure. This issue is rated as moderate. Android: A-69383916. Reference: N-CVE-2018-6246.

Affected products

google — android

Does this affect you?

Add your gear to cvedb and we'll alert you only when google ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.