Lucene search
Google_androidCVELIST:CVE-2021-0312HistoryJan 11, 2021 - 9:48 p.m.
CVE-2021-0312
2021-01-1121:48:24
google_android
www.cve.org
5
wavsource::read
wavextractor.cpp
integer overflow
out of bounds write
remote information disclosure
android
versions
user interaction.
In WAVSource::read of WAVExtractor.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android; Versions: Android-8.1, Android-9, Android-10, Android-11, Android-8.0; Android ID: A-170583712.
CNA Affected
[
{
"product": "Android",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Android-8.1"
},
{
"status": "affected",
"version": "Android-9"
},
{
"status": "affected",
"version": "Android-10"
},
{
"status": "affected",
"version": "Android-11"
},
{
"status": "affected",
"version": "Android-8.0"
}
]
}
]Related
nvd
nvd
CVE-2021-0312
2021-01-11 22:15:13
osv
osv
wav_extractor_fuzzer: Unsigned-integer-overflow with empty stacktrace
2021-01-01 00:00:00
cve
cve
CVE-2021-0312
2021-01-11 22:15:13
prion
prion
Integer overflow
2021-01-11 22:15:00
threatpost
threatpost
Google Warns of Critical Android Remote Code Execution Bug
2021-01-05 20:21:40