CVE-2019-9278

Source
https://nvd.nist.gov/vuln/detail/CVE-2019-9278
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-9278.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2019-9278
Downstream
Related
Published
2019-09-27T19:15:19Z
Modified
2025-08-09T19:01:27Z
Severity
  • 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774

References

Affected packages