CVE-2021-0592

HIGH

Android WideVine - Out-of-bounds Write

Title source: llm
STIX 2.1

Description

In various functions in WideVine, there are possible out of bounds writes due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-188061006

References (1)

Core 1
Core References

Scores

CVSS v3 8.8
EPSS 0.0106
EPSS Percentile 60.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (1)
google/android
Published Jul 14, 2021
Tracked Since Feb 18, 2026