CVSS: 8.4EPSS: 0%CPEs: 4EXPL: 0CVE-2024-0048
https://notcve.org/view.php?id=CVE-2024-0048
11 Mar 2024 — In Session of AccountManagerService.java, there is a possible method to retain foreground service privileges due to incorrect handling of null responses. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. En la sesión de AccountManagerService.java, existe un método posible para conservar los privilegios del servicio en primer plano debido al manejo incorrecto de respuestas nulas. Esto podría conducir a una escalad... • https://android.googlesource.com/platform/frameworks/base/+/2c236cde5505ee0e88cf1e3d073e2f1a53f0eede • CWE-230: Improper Handling of Missing Values •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2024-0046
https://notcve.org/view.php?id=CVE-2024-0046
11 Mar 2024 — In installExistingPackageAsUser of InstallPackageHelper.java, there is a possible carrier restriction bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. En installExistingPackageAsUser de InstallPackageHelper.java, existe una posible omisión de restricción del operador debido a un error lógico en el código. Esto podría conducir a una escalada local de privilegios sin necesi... • https://android.googlesource.com/platform/frameworks/base/+/d68cab5ac1aa294ec4d0419bc0803a5577e4e43c • CWE-269: Improper Privilege Management •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2024-0045
https://notcve.org/view.php?id=CVE-2024-0045
11 Mar 2024 — In smp_proc_sec_req of smp_act.cc, there is a possible out of bounds read due to improper input validation. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. En smp_proc_sec_req de smp_act.cc, existe una posible lectura fuera de los límites debido a una validación de entrada incorrecta. Esto podría conducir a la divulgación de información remota (próxima/adyacente) sin necesidad de privilegios... • https://android.googlesource.com/platform/packages/modules/Bluetooth/+/7d0f696f450241d8ba7a168ba14fa7b75032f0c9 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 12CVE-2024-0044 – Android 12 / 13 Run-As Any App Proof of Concept
https://notcve.org/view.php?id=CVE-2024-0044
11 Mar 2024 — In createSessionInternal of PackageInstallerService.java, there is a possible run-as any app due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. En createSessionInternal de PackageInstallerService.java, existe una posible ejecución como cualquier aplicación debido a una validación de entrada incorrecta. Esto podría conducir a una escalada local de privilegios sin necesidad de permi... • https://packetstorm.news/files/id/183052 • CWE-75: Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 2CVE-2024-0039
https://notcve.org/view.php?id=CVE-2024-0039
11 Mar 2024 — In attp_build_value_cmd of att_protocol.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. En attp_build_value_cmd de att_protocol.cc, hay una posible escritura fuera de los límites debido a una verificación de los límites faltantes. Esto podría conducir a la ejecución remota de código sin necesidad de privilegios de ejecución adicionales. • https://github.com/41yn14/CVE-2024-0039-Exploit •
CVSS: 7.4EPSS: 0%CPEs: 5EXPL: 2CVE-2024-0023
https://notcve.org/view.php?id=CVE-2024-0023
16 Feb 2024 — In ConvertRGBToPlanarYUV of Codec2BufferUtils.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. En ConvertRGBToPlanarYUV de Codec2BufferUtils.cpp, existe una posible escritura fuera de los límites debido a una verificación de los límites incorrecta. Esto podría conducir a una escalada local de privilegios sin necesidad de permisos de e... • https://github.com/AbrarKhan/G3_Frameworks_av_CVE-2024-0023 • CWE-787: Out-of-bounds Write •
CVSS: 7.0EPSS: 0%CPEs: 2EXPL: 0CVE-2024-0021
https://notcve.org/view.php?id=CVE-2024-0021
16 Feb 2024 — In onCreate of NotificationAccessConfirmationActivity.java, there is a possible way for an app in the work profile to enable notification listener services due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. En onCreate de NotificationAccessConfirmationActivity.java, existe una forma posible para que una aplicación en el perfil de trabajo habilite los servicios de escucha de notificaci... • https://android.googlesource.com/platform/packages/apps/Settings/+/53ea491d276f9a7c586c7983c08105a9bb7051f1 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2024-0020
https://notcve.org/view.php?id=CVE-2024-0020
16 Feb 2024 — In onActivityResult of NotificationSoundPreference.java, there is a possible way to hear audio files belonging to a different user due to a confused deputy. This could lead to local information disclosure across users of a device with no additional execution privileges needed. User interaction is not needed for exploitation. En onActivityResult de NotificationSoundPreference.java, existe una forma posible de escuchar archivos de audio que pertenecen a un usuario diferente debido a un diputado confundido. Es... • https://android.googlesource.com/platform/packages/apps/Settings/+/87f791f2351e366f842a0fd6fcb744069160d9a1 •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2024-0019
https://notcve.org/view.php?id=CVE-2024-0019
16 Feb 2024 — In setListening of AppOpsControllerImpl.java, there is a possible way to hide the microphone privacy indicator when restarting systemUI due to a missing check for active recordings. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for exploitation. En setListening de AppOpsControllerImpl.java, existe una forma posible de ocultar el indicador de privacidad del micrófono al reiniciar la UI del sistema debido a que falta una verificación de g... • https://android.googlesource.com/platform/frameworks/base/+/707fc94ec3df4cf6b985e6d06c2588690d1a025a •
CVSS: 8.4EPSS: 0%CPEs: 5EXPL: 0CVE-2024-0018
https://notcve.org/view.php?id=CVE-2024-0018
16 Feb 2024 — In convertYUV420Planar16ToY410 of ColorConverter.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. En convertYUV420Planar16ToY410 de ColorConverter.cpp, existe una posible escritura fuera de los límites debido a un desbordamiento de búfer de almacenamiento dinámico. Esto podría conducir a una escalada local de privilegios sin necesidad de... • https://android.googlesource.com/platform/frameworks/av/+/bf6406041919f67219fd1829438dda28845d4c23 • CWE-122: Heap-based Buffer Overflow •