CVE-2018-9567— Android Bootloader组件权限许可和访问控制问题漏洞

N/A

On Pixel devices there is a bug causing verified boot to show the same certificate fingerprint despite using different signing keys. This may lead to local escalation of privilege if people are relying on those fingerprints to determine what version of the OS the device is running, with System execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-65543936.

N/A

N/A

Android Bootloader组件权限许可和访问控制问题漏洞

Android是美国谷歌（Google）公司和开放手持设备联盟（简称OHA）共同开发的一套以Linux为基础的开源操作系统。Bootloader是其中的一个启动加载程序。 Android（Pixel设备上）中的Bootloader组件存在提权漏洞。本地攻击者可利用该漏洞获取提升的权限。

N/A

N/A