Android Media OOB Write in NuMediaExtractor.cpp Enables RCE
CVE-2023-21127 Published on June 15, 2023

In readSampleData of NuMediaExtractor.cpp, there is a possible out of bounds write due to uninitialized data. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-275418191

NVD

Products Associated with CVE-2023-21127

Want to know whenever a new CVE is published for Google Android? stack.watch will email you.

Google Android

Exploit Probability

EPSS

1.35%

Percentile

79.94%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Android Media OOB Write in NuMediaExtractor.cpp Enables RCECVE-2023-21127 Published on June 15, 2023

Products Associated with CVE-2023-21127

Exploit Probability

Android Media OOB Write in NuMediaExtractor.cpp Enables RCE
CVE-2023-21127 Published on June 15, 2023