CVE List


Moderate 6.5

In ~AACExtractor() of AACExtractor.cpp, there is a possible out of bounds write due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11Android ID: A-142641801

Published October 14, 2020.

Affected software

Google Android

Reference links

Sign Up for Alerts