How severe is CVE-2018-10500?

This vulnerability has a severity rating of HIGH with a CVSS score of 7 out of 10.

What type of vulnerability is CVE-2018-10500?

This is classified as CWE-284, which is a common weakness in software security.

CVE-2018-10500

HIGH Year: 2018

CVSS v3 Score

7.0

High

CVSS v2 Score

4.4

Medium

Weakness Type

CWE-284

View all →

Vulnerability Description

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Samsung Galaxy Apps Fixed in version 6.4.0.15. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of push messages. The issue lies in the ability to start an activity with controlled arguments. An attacker can leverage this vulnerability to escalate privileges to resources normally protected from the application. Was ZDI-CAN-5331.

CVE-2016-3319

HIGH

CVSS:7.0(High)

The PDF library in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows 10 Gold and 1511, and Microsoft Edge allows remote attackers to execute arbitrary code via a crafted PDF file, aka "M...

CWE-2842016

CVE-2016-6179

HIGH

CVSS:7.0(High)

The WiFi driver in Huawei Honor 6 smartphones with software H60-L01 before H60-L01C00B850, H60-L11 before H60-L11C00B850, H60-L21 before H60-L21C00B850, H60-L02 before H60-L02C00B850, H60-L12 before H...

CWE-2842016

CVE-2016-6180

HIGH

CVSS:7.0(High)

The Camera driver in Huawei Honor 4C smartphones with software CHM-UL00C00 before CHM-UL00C00B564, CHM-TL00C01 before CHM-TL00C01B564, and CHM-TL00C00 before CHM-TL00HC00B564 allows attackers to cause...

CWE-2842016