EPSS
Percentile
39.9%
In WAVSource::read of WAVExtractor.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.
android.googlesource.com/platform/frameworks/av/+/bb460899b97f260e7ed556b578318b1133335e1c
source.android.com/security/bulletin/2021-01-01