CVE-2015-2003

Incorrect Access of Indexable Resource ('Range Error') (CWE-118)

Published: Mar 29, 2018 / Updated: 80mo ago

010
No CVSS yetEPSS 0.51%
CVE info copied to clipboard

The PJSIP PJSUA2 SDK before SVN Changeset 51322 for Android might allow attackers to execute arbitrary code by leveraging a finalize method in a Serializable class that improperly passes an attacker-controlled pointer to a native function.

Timeline

First Article

Feedly found the first article mentioning CVE-2015-2003. See article

Aug 10, 2015 at 4:27 PM / news.google.com
EPSS

EPSS Score was set to: 0.51% (Percentile: 73.8%)

Dec 11, 2023 at 12:45 AM
Static CVE Timeline Graph

Affected Systems

Pjsip/pjsua2_sdk
+null more

Attack Patterns

CAPEC-10: Buffer Overflow via Environment Variables
+null more

CVSS V3.1

Unknown

Categories

Be the first to know about critical vulnerabilities

Collect, analyze, and share vulnerability reports faster using AI