CVE-2018-9474 — In writeToParcel of MediaPlayer.java, there is a possible serialization/deserialization mismatch due to improper input validation. This could lead to local escalation of privilege with no additional e — CVE Database · The Intelligence Room