CVE-2019-2176

CVE-2019-2176 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

In ihevcd_parse_buffering_period_sei of ihevcd_parse_headers.c in Android 8.0, 8.1 and 9, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.

Learn more about our Cis Benchmark Audit For Google Android.