Description
An improper input validation vulnerability in sflacfd_get_frm() in libsflacextractor library prior to SMR MAY-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor process.
Related CPE's
o
android
4
References
CVSS impact metrics
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
9 · Critical
Information
Source identifier
Vulnerability status
Modified
Published
2021-06-11T13:15:08.467Z
4 years agoLast modified
2024-11-21T04:54:53.540Z
1 year ago