Lucene search
China National Vulnerability DatabaseCNVD-2024-07127HistoryDec 06, 2023 - 12:00 a.m.
Google Android elevation of privilege vulnerability (CNVD-2024-07127)
2023-12-0600:00:00
China National Vulnerability Database
www.cnvd.org.cn
2
google android
elevation of privilege
btm_ble.cc
side-channel information
btm_bleverifysignature
attacker
elevated privileges
cnvd-2024-07127
Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability due to the disclosure of side-channel information in the BTM_ble.cc script BTM_BleVerifySignature, which can be exploited by an attacker to gain elevated privileges on the system.
| CPE | Name | Operator | Version |
|---|---|---|---|
| google android | eq | 11.0 | |
| google android | eq | 12.0 | |
| google android | eq | 12.1 | |
| google android | eq | 13.0 | |
| google android | eq | 14.0 |
Related
prion
prion
Design/Logic Flaw
2023-12-04 23:15:00
osv
osv
[Bluetooth][BTM] BTM_BleVerifySignature side-channel attack possibility
2023-12-01 00:00:00
cvelist
cvelist
CVE-2023-40090
2023-12-04 22:40:53
cve
cve
CVE-2023-40090
2023-12-04 23:15:24
nvd
nvd
CVE-2023-40090
2023-12-04 23:15:24