Vulnerabilities > CVE-2017-13199 - Improper Handling of Exceptional Conditions vulnerability in Google Android 8.0/8.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
In Bitmap.ccp if Bitmap.nativeCreate fails an out of memory exception is not thrown leading to a java.io.IOException later on. This could lead to a remote denial of service of a critical system process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 8.0, 8.1. Android ID: A-33846679.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 2 |