CVE-2019-2208

Name of the Vulnerable Software and Affected Versions Android versions Android-8.1, Android-9

Description A bug in code generation in the v8 JIT code of PromiseBuiltinsAssembler::NewPromiseCapability in builtins-promise.cc could lead to a possible out of bounds read. This issue may result in remote information disclosure without requiring additional execution privileges. User interaction is not necessary for exploitation.

Recommendations For Android versions Android-8.1 and Android-9, update to a version that includes the fix for this issue to prevent potential remote information disclosure.