CVE-2024-47025
https://notcve.org/view.php?id=CVE-2024-47025
In ppmp_protect_buf of drm_fw.c, there is a possible information disclosure due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. • https://source.android.com/security/bulletin/pixel/2024-10-01 • CWE-863: Incorrect Authorization •
CVE-2024-47024
https://notcve.org/view.php?id=CVE-2024-47024
In vring_size of external/headers/include/virtio/virtio_ring.h, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. • https://source.android.com/security/bulletin/pixel/2024-10-01 • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVE-2024-47023
https://notcve.org/view.php?id=CVE-2024-47023
there is a possible man-in-the-middle attack due to a logic error in the code. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. • https://source.android.com/security/bulletin/pixel/2024-10-01 •
CVE-2024-47022
https://notcve.org/view.php?id=CVE-2024-47022
N/A Android before 2024-10-05 on Google Pixel devices allows information disclosure in the ACPM component, A-331255656. • https://source.android.com/security/bulletin/pixel/2024-10-01 •
CVE-2024-47021
https://notcve.org/view.php?id=CVE-2024-47021
In sms_ExtractCbLanguage of sms_CellBroadcast.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. • https://source.android.com/security/bulletin/pixel/2024-10-01 • CWE-125: Out-of-bounds Read •