Security Advisory

CVE-2023-40087

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-12-04 22:40:52

Last updated 2024-08-28 17:44:04

Assigner google_android

State PUBLISHED

Description

In transcodeQ*ToFloat of btif_avrcp_audio_track.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to paired device escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

← Browse all CVEs View on cve.org ↗