CVE-2024-23709

2024-05-0721:15:08

[email protected]

web.nvd.nist.gov

buffer overflow

remote disclosure

user interaction

6.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

In multiple locations, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.

References

android.googlesource.com/platform/external/sonivox/+/3f798575d2d39cd190797427d13471d6e7ceae4c

source.android.com/security/bulletin/2024-05-01