CVE-2015-2002 in ArcGis Runtime SDKinformação

Sumário

de MITRE

The ESRI ArcGis Runtime SDK before 10.2.6-2 for Android might allow attackers to execute arbitrary code by leveraging a finalize method in a Serializable class that improperly passes an attacker-controlled pointer to a native function.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservar

19/02/2015

Divulgação

29/03/2018

Moderação

aceite

Entrada

VDB-115209

CPE

pronto

CWE

CWE-118 (confirmado)

CVSS

9.8 (NVD)

EPSS

0.01095

KEV

não

Atividades

muito baixo

Sector

Homeoffice, Police

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-2002
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-2002
CVE Details	https://www.cvedetails.com/cve/CVE-2015-2002/

◂ Voltar Visão Geral Próximo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!