CVE-2018-9375

{"id": "CVE-2018-9375", "cveTags": [], "metrics": {}, "published": "2025-01-17T23:15:11.500", "references": [{"url": "https://source.android.com/security/bulletin/pixel/2018-06-01", "source": "security@android.com"}], "vulnStatus": "Received", "descriptions": [{"lang": "en", "value": "In multiple functions of UserDictionaryProvider.java, there is a possible way to add and delete words in the user dictionary due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."}], "lastModified": "2025-01-17T23:15:11.500", "sourceIdentifier": "security@android.com"}