CVE-2024-27220

In lpm_req_handler of , there is a possible out of bounds memory access due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Configurations

No configuration.

History

21 Nov 2024, 09:04

Type Values Removed Values Added
References () https://source.android.com/security/bulletin/pixel/2024-03-01 - () https://source.android.com/security/bulletin/pixel/2024-03-01 -

26 Aug 2024, 16:35

Type Values Removed Values Added
CWE CWE-125
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 8.4

15 Mar 2024, 20:15

Type Values Removed Values Added
Summary
  • (es) En lpm_req_handler de TBD, existe un posible acceso a la memoria fuera de los límites debido a una verificación de los límites faltante. Esto podría conducir a una escalada local de privilegios sin necesidad de permisos de ejecución adicionales. La interacción del usuario no es necesaria para la explotación.
Summary (en) In lpm_req_handler of TBD, there is a possible out of bounds memory access due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. (en) In lpm_req_handler of , there is a possible out of bounds memory access due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

11 Mar 2024, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-03-11 19:15

Updated : 2024-11-21 09:04


NVD link : CVE-2024-27220

Mitre link : CVE-2024-27220

CVE.ORG link : CVE-2024-27220


JSON object : View

Products Affected

No product.

CWE
CWE-125

Out-of-bounds Read