Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:31 a.m.7 views

CVE-2024-40673

In Source of ZipFile.java, there is a possible way for an attacker to execute arbitrary code by manipulating Dynamic Code Loading due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for...

6.5CVSS8.4AI score0.00281EPSS
Exploits0
NVD
NVD
added 2025/01/28 8:15 p.m.20 views

CVE-2024-40673

In Source of ZipFile.java, there is a possible way for an attacker to execute arbitrary code by manipulating Dynamic Code Loading due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for...

6.5CVSS0.00281EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/01/28 8:15 p.m.9 views

CVE-2024-40673

In Source of ZipFile.java, there is a possible way for an attacker to execute arbitrary code by manipulating Dynamic Code Loading due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for...

6.5CVSS6.6AI score0.00281EPSS
Exploits0References3
Circl
Circl
added 2025/01/28 7:46 p.m.6 views

CVE-2024-40673

creationtimestamp| type| source ---|---|--- 2025-01-28 19:46:30+00:00| seen| https://infosec.exchange/users/cve/statuses/113907701524268534 2025-01-28 20:16:19+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgtbiu4cir2r 2025-01-28 22:09:30+00:00|...

6.5CVSS5.7AI score0.00281EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/01/28 7:13 p.m.16 views

CVE-2024-40673

In Source of ZipFile.java, there is a possible way for an attacker to execute arbitrary code by manipulating Dynamic Code Loading due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for...

0.00281EPSS
Exploits0References2
CVE
CVE
added 2025/01/28 7:13 p.m.330 views

CVE-2024-40673

CVE-2024-40673 affects Google Android (System component via ZipFile.java) with improper input validation of dynamic code loading, enabling remote code execution without privileges or user interaction. Public details confirm the issue and reference Android security bulletin guidance indicating pat...

6.5CVSS8.7AI score0.00281EPSS
Exploits0References2Affected Software1
NCSC
NCSC
added 2024/10/08 1:55 p.m.10 views

Vulnerabilities fixed in Google Android and Samsung Mobile

Google has fixed vulnerabilities in Android. Samsung has fixed vulnerabilities relevant to Samsung mobile devices in Samsung Mobile. A malicious person could exploit the vulnerabilities to cause a denial-of-service, grant themselves elevated privileges or execute arbitrary code. The most serious...

9.8CVSS7.5AI score0.0146EPSS
Exploits18References2
Rows per page
Query Builder