{"id":"CVE-2018-9543","details":"In trim_device of f2fs_format_utils.c, it is possible that the data partition is not wiped during a factory reset. This could lead to local information disclosure after factory reset with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-112868088.","modified":"2026-03-15T22:26:44.224750Z","published":"2018-11-14T18:29:01.227Z","references":[{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/105849"},{"type":"ADVISORY","url":"https://source.android.com/security/bulletin/2018-12-01"},{"type":"FIX","url":"https://source.android.com/security/bulletin/2018-11-01"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"7.0"}]},{"events":[{"introduced":"0"},{"last_affected":"7.1.1"}]},{"events":[{"introduced":"0"},{"last_affected":"7.1.2"}]},{"events":[{"introduced":"0"},{"last_affected":"8.0"}]},{"events":[{"introduced":"0"},{"last_affected":"8.1"}]},{"events":[{"introduced":"0"},{"last_affected":"9.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-9543.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}]}