Lucene search
+L

4 matches found

NVD
NVD
added 2024/11/20 11:15 a.m.17 views

CVE-2024-10382

There exists a code execution vulnerability in the Car App Android Jetpack Library. CarAppService uses deserialization logic that allows construction of arbitrary java classes. This can lead to arbitrary code execution when combined with specific Java deserialization gadgets. An attacker needs to...

7.5CVSS0.00155EPSS
Exploits0References1
Circl
Circl
added 2024/11/20 10:30 a.m.13 views

CVE-2024-10382

creationtimestamp| type| source ---|---|--- 2024-11-20 10:30:28+00:00| seen| https://infosec.exchange/users/cve/statuses/113514815700194839 2024-11-20 12:54:06+00:00| seen| https://t.me/cvedetector/11582...

7.5CVSS4.8AI score0.00155EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/11/20 10:21 a.m.22 views

CVE-2024-10382 Arbitrary Code execution in Car App Android Jetpack Library

There exists a code execution vulnerability in the Car App Android Jetpack Library. CarAppService uses deserialization logic that allows construction of arbitrary java classes. This can lead to arbitrary code execution when combined with specific Java deserialization gadgets. An attacker needs to...

7.3CVSS7.6AI score0.00155EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/20 10:21 a.m.25 views

CVE-2024-10382 Arbitrary Code execution in Car App Android Jetpack Library

There exists a code execution vulnerability in the Car App Android Jetpack Library. CarAppService uses deserialization logic that allows construction of arbitrary java classes. This can lead to arbitrary code execution when combined with specific Java deserialization gadgets. An attacker needs to...

7.3CVSS0.00155EPSS
Exploits0References1
Rows per page
Query Builder