Amazon: >> Kindle Firmware Security Vulnerabilities
Amazon Kindle e-reader prior to and including version 5.13.4 improperly manages privileges, allowing the framework user to elevate privileges to root.
CVSS Score
8.6
EPSS Score
0.002
Published
2021-09-01
Amazon Kindle e-reader prior to and including version 5.13.4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function CJBig2Image::expand() and results in a memory corruption that leads to code execution when parsing a crafted PDF book.
CVSS Score
8.6
EPSS Score
0.009
Published
2021-09-01