Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2014-3100

Stack-based buffer overflow in the encode_key function in /system/bin/keystore in the KeyStore service in Android 4.3 allows attackers to execute arbitrary code, and consequently obtain sensitive key information or bypass intended restrictions on cryptographic operations, via a long key name.

  • Published: Jul 2, 2014
  • Updated: Apr 13, 2023
  • CVE: CVE-2014-3100
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5.1
  • AV:N/AC:H/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
google / android 4.3 4.3.x