VDB
CVE-2019-1987
CVE-2019-1987
PUBLISHED
CVSS 9.300000190734863 CRITICAL
In onSetSampleX of SkSwizzler.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-118143775.
EPSS 0.16% · 37.3th percentile
Risk Scores
CVSS 2.0
9.300000190734863
EPSS Score
0.16%
37.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Android | Android | * |
| android | 7.1.1, 7.1.2, 7.0 |
Exploit Intelligence
- 106842 (circl)
- https://source.android.com/security/bulletin/2019-02-01 (circl)
Timeline
- Feb 5, 2019 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Nov 6, 2022 EPSS Score