In FileInputStream::Read of... CVE-2019-2105

6.8 AV AC AU C I A
发布: 2019-07-08
修订: 2019-09-10

In FileInputStream::Read of file_input_stream.cc, there is a possible memory corruption due to uninitialized data. This could lead to remote code execution in an unprivileged process with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-116114182.

0%
暂无可用Exp或PoC
当前有6条受影响产品信息