Description
In various functions in WideVine, there are possible out of bounds writes due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-188061006
References
https://source.android.com/security/bulletin/2021-07-01
Vendor Advisory
https://source.android.com/security/bulletin/2021-07-01
Vendor Advisory
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.8 · High
Information
Source identifier
Vulnerability status
Modified
Published
2021-07-14T12:15:08.497Z
4 years agoLast modified
2024-11-21T04:42:59.107Z
1 year ago