Sonivox Components Remote Code Execution and Memory Corruption Vulnerability

Sonivox Components Remote Code Execution and Memory Corruption Vulnerability

CVE-2015-3874 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The Sonivox components in Android before 5.1.1 LMY48T allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bugs 23335715, 23307276, and 23286323.

Learn more about our Cis Benchmark Audit For Google Android.