4 matches found
CVE-2024-0014
In startInstall of UpdateFetcher.java, there is a possible way to trigger a malicious config update due to a logic error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-0014
creationtimestamp| type| source ---|---|--- 2024-02-16 03:21:47+00:00| seen| https://t.me/ctinow/186080 2025-03-28 20:28:57+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9456...
CVE-2024-0014
In startInstall of UpdateFetcher.java, there is a possible way to trigger a malicious config update due to a logic error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-0014
CVE-2024-0014: The UpdateFetcher.java startInstall path contains a logic error that could allow a malicious config update, enabling local privilege escalation with no extra privileges and no user interaction required. This vulnerability is described across multiple sources (NVD/Red Hat/UVD enrich...