VDB
ASB-A-230493653
ASB-A-230493653
PUBLISHED
CVSS 6.900000095367432 MEDIUM
In updateAudioTrackInfoFromESDS_MPEG4Audio of MPEG4Extractor.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.
Risk Scores
CVSS 4.0
6.900000095367432
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| platform | frameworks/av | 10:0, 10, 11:0 |
Timeline
- Aug 1, 2022 CVE Published
- May 15, 2026 CVE Updated