CVE-2021-0635

2021-10-0614:12:10

google_android

www.cve.org

flv file extraction

memory corruption

playback interface

system crash

malicious code attacks

user rights loss

android 10

cve-2021-0635

AI Score

7.7

Confidence

High

EPSS

0.001

Percentile

19.0%

JSON

When extracting the incorrectly formatted flv file, the memory is damaged, the playback interface shows that the video cannot be played, and the log is found to be crashed. This problem may lead to hacker malicious code attacks, resulting in the loss of user rights.Product: Androidversion:Android-10Android ID: A-189402477

CNA Affected

[
  {
    "product": "Android",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Android SoC"
      }
    ]
  }
]

References

source.android.com/security/bulletin/2021-09-01