Lucene search
Google_androidCVELIST:CVE-2024-0033HistoryFeb 16, 2024 - 12:08 a.m.
CVE-2024-0033
2024-02-1600:08:16
google_android
www.cve.org
2
heap buffer overflow
ashmem-dev.cpp
local escalation of privilege
missing seal
user interaction
In multiple functions of ashmem-dev.cpp, there is a possible missing seal due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CNA Affected
[
{
"vendor": "Google",
"product": "Android",
"versions": [
{
"version": "14",
"status": "affected"
},
{
"version": "13",
"status": "affected"
},
{
"version": "12L",
"status": "affected"
},
{
"version": "12",
"status": "affected"
},
{
"version": "11",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]Related
vulnrichment
vulnrichment
CVE-2024-0033
2024-02-16 00:08:16
cve
cve
CVE-2024-0033
2024-02-16 02:15:50
nvd
nvd
CVE-2024-0033
2024-02-16 02:15:50
osv
osv
[Binder MemoryHeapBase] - Need to SEAL file size on memfd mapped region
2024-02-01 00:00:00
prion
prion
Heap overflow
2024-02-16 02:15:00