exploitDog

CVE-2024-32927

Опубликовано: 19 авг. 2024

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

In sendDeviceState_1_6 of RadioExt.cpp, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Ссылки

https://source.android.com/security/bulletin/pixel/2024-08-01
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

EPSS

Процентиль: 9%

0.00031

Низкий

7.8 High

CVSS3

Дефекты

CWE-416

CWE-416

Связанные уязвимости

GHSA-mw37-8h7c-93hw

CVSS3: 7.8

github

больше 1 года назад

In sendDeviceState_1_6 of RadioExt.cpp, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

EPSS

Процентиль: 9%

0.00031

Низкий

7.8 High

CVSS3

Дефекты

CWE-416

CWE-416