CVE List

CVE-2019-2115

Critical 7.8

In GateKeeper::MintAuthToken of gatekeeper.cpp in Android 7.1.1, 7.1.2, 8.0, 8.1 and 9, there is possible memory corruption due to a double free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

Published September 6, 2019.

Affected software

Google Android

Reference links

Sign Up for Alerts