7 matches found
CVE-2024-40673
In Source of ZipFile.java, there is a possible way for an attacker to execute arbitrary code by manipulating Dynamic Code Loading due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for...
CVE-2024-40673
In Source of ZipFile.java, there is a possible way for an attacker to execute arbitrary code by manipulating Dynamic Code Loading due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for...
CVE-2024-40673
In Source of ZipFile.java, there is a possible way for an attacker to execute arbitrary code by manipulating Dynamic Code Loading due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for...
CVE-2024-40673
creationtimestamp| type| source ---|---|--- 2025-01-28 19:46:30+00:00| seen| https://infosec.exchange/users/cve/statuses/113907701524268534 2025-01-28 20:16:19+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgtbiu4cir2r 2025-01-28 22:09:30+00:00|...
CVE-2024-40673
In Source of ZipFile.java, there is a possible way for an attacker to execute arbitrary code by manipulating Dynamic Code Loading due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for...
CVE-2024-40673
CVE-2024-40673 affects Google Android (System component via ZipFile.java) with improper input validation of dynamic code loading, enabling remote code execution without privileges or user interaction. Public details confirm the issue and reference Android security bulletin guidance indicating pat...
Vulnerabilities fixed in Google Android and Samsung Mobile
Google has fixed vulnerabilities in Android. Samsung has fixed vulnerabilities relevant to Samsung mobile devices in Samsung Mobile. A malicious person could exploit the vulnerabilities to cause a denial-of-service, grant themselves elevated privileges or execute arbitrary code. The most serious...