CVE-2021-0967
CVE-2021-0967
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.0%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
15 Dec 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
In vorbis_book_decodev_set of codebook.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-199065614
Affected products
n/a · AndroidWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →