Описание
In parseTrackFragmentRun of MPEG4Extractor.cpp, there is possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-124389881
Ссылки
- Not Applicable
- Vendor Advisory
- Not Applicable
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:*
EPSS
Процентиль: 52%
0.00294
Низкий
6.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-400
Связанные уязвимости
CVSS3: 6.5
github
больше 3 лет назад
In parseTrackFragmentRun of MPEG4Extractor.cpp, there is a possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android Versions: Android-10 Android ID: A-124389881
EPSS
Процентиль: 52%
0.00294
Низкий
6.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-400