Critical severity9.8NVD Advisory· Published Mar 29, 2018· Updated Jun 17, 2026
CVE-2015-2002
CVE-2015-2002
Description
The ESRI ArcGis Runtime SDK before 10.2.6-2 for Android might allow attackers to execute arbitrary code by leveraging a finalize method in a Serializable class that improperly passes an attacker-controlled pointer to a native function.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <10.2.6-2
Patches
Vulnerability mechanics
References
2- alephsecurity.com/vulns/aleph-2015003nvdThird Party Advisory
- www.usenix.org/system/files/conference/woot15/woot15-paper-peles.pdfnvdTechnical DescriptionThird Party Advisory
News mentions
0No linked articles in our index yet.