A vulnerability has been found in Google Android 14 and classified as critical. Affected by this vulnerability is the function a2dp_vendor_opus_decoder_decode_packet of the file a2dp_vendor_opus_decoder.cc. The manipulation leads to out-of-bounds write.

This vulnerability is known as CVE-2023-40078. The attack can only be done within the local network. There is no exploit available.

It is recommended to apply a patch to fix this issue.