3 matches found
Google Android elevation of privilege vulnerability (CNVD-2024-07129)
Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability due to a lack of bounds checking in the code conversion QToFloat in the btifavrcpaudiotrack.cc script, which can be exploited by an attacker to gain elevat...
CVE-2023-40087
In transcodeQToFloat of btifavrcpaudiotrack.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to paired device escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-40087
CVE-2023-40087 affects Android Bluetooth code in transcodeQ*ToFloat (btif_avrcp_audio_track.cc) with a missing bounds check, causing an out-of-bounds write and potential elevation of privilege on a paired device. No user interaction required. Documents note this issue and reference Android patch ...