1. Home
  2. CVEs with refmap.fulldisc==20141119 CVE-2014-7911: Android <5.0 Privilege Escalation using ObjectInputStream
Max CVSS 7.2 Min CVSS 7.2 Total Count2
IDCVSSSummaryLast (major) updatePublished
CVE-2014-7911 7.2
luni/src/main/java/java/io/ObjectInputStream.java in the java.io.ObjectInputStream implementation in Android before 5.0.0 does not verify that deserialization will result in an object that met the requirements for serialization, which allows attacker
16-12-2014 - 18:14 15-12-2014 - 18:59
Back to Top Mark selected
Back to Top