exploitDog

CVE-2021-0402

Опубликовано: 26 фев. 2021

Источник: nvd

CVSS3: 6.7

CVSS2: 7.2

EPSS Низкий

Описание

In jpeg, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-11; Patch ID: ALPS05433311.

Ссылки

https://corp.mediatek.com/product-security-acknowledgements
Third Party Advisory
https://corp.mediatek.com/product-security-acknowledgements
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*

EPSS

Процентиль: 15%

0.0005

Низкий

6.7 Medium

CVSS3

7.2 High

CVSS2

Дефекты

CWE-787

Связанные уязвимости

GHSA-v7gv-m5f9-wh8w

github

больше 3 лет назад

In jpeg, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-11; Patch ID: ALPS05433311.

EPSS

Процентиль: 15%

0.0005

Низкий

6.7 Medium

CVSS3

7.2 High

CVSS2

Дефекты

CWE-787