CVE-2024-44096

MEDIUM

4.4

Description

there is a possible arbitrary read due to an insecure default value. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.

Details CVE

Score CVSS v3.14.4

SeveriteMEDIUM

Vecteur CVSSCVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Vecteur d'attaqueLOCAL

ComplexiteLOW

Privileges requisHIGH

Interaction utilisateurNONE

Publie9/13/2024

Derniere modification10/15/2024

Sourcenvd

Observations honeypot0

Produits affectes

google:android

Faiblesses (CWE)

CWE-1188

References

https://source.android.com/security/bulletin/pixel/2024-09-01(dsap-vuln-management@google.com)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.