The Jumio SDK before 1.5.0 for Android might allow attackers to execute arbitrary code by leveraging a finalize method in a Serializable class that improperly passes an attacker-controlled pointer to a native function.
Published at: March 29, 2018 at 11:29PM
View on website
New vulnerability on the NVD: CVE-2015-2000
Tag: government hack NVD security
No comments: