Description
An integer overflow exists in Mapbox's closed source gl-native library prior to version 10.6.1, which is bundled with multiple Mapbox products including open source libraries. The overflow is caused by large image height and width values when creating a new Image and allows for out of bounds writes, potentially crashing the Mapbox process.
References (1)
Core 1
Core References
Release Notes, Third Party Advisory x_refsource_confirm
https://github.com/mapbox/mapbox-maps-android/releases/tag/android-v10.6.1
Scores
CVSS v3
7.5
EPSS
0.0073
EPSS Percentile
49.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-190
Status
published
Products (2)
com.mapbox.mapboxsdk/mapbox-android-core
0 - 10.6.1Maven
mapbox/maps_software_development_kit
< 10.6.1
Published
Aug 16, 2022
Tracked Since
Feb 18, 2026