CVE-2013-2597
Code Aurora ACDB Audio Driver Stack-based Buffer Overflow Vulnerability
CVSS
—
No CVSS
EPSS
1.5%
p72
KEV
YES
Sep 15, 2022
Exploit Today
72
0-100
Published: — · Last modified: —
Product
Code Aurora / ACDB Audio Driver
Vulnerability
Code Aurora ACDB Audio Driver Stack-based Buffer Overflow Vulnerability
Added to KEV
Sep 15, 2022
Remediate by
Oct 6, 2022
Known ransomware use
No
Summary description
The Code Aurora audio calibration database (acdb) audio driver contains a stack-based buffer overflow vulnerability that allows for privilege escalation. Code Aurora is used in third-party products such as Qualcomm and Android.
Required action
Apply updates per vendor instructions.
Notes
https://web.archive.org/web/20161226013354/https:/www.codeaurora.org/news/security-advisories/stack-based-buffer-overflow-acdb-audio-driver-cve-2013-2597; https://nvd.nist.gov/vuln/detail/CVE-2013-2597
No related CVEs by CWE or product.