Google Pixel elevation of privilege vulnerability (CNVD-2024-45892)

Google Pixel is a smartphone from the American company Google Google. Google Pixel suffers from an elevation of privilege vulnerability that stems from a double release issue in lwisdeviceeventstatesclearlocked in lwisevent.c, which can be exploited by an attacker to cause elevation of privilege...

CVE-2024-44098

In lwisdeviceeventstatesclearlocked of lwisevent.c, there is a possible privilege escalation due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2024-44098

Summary: CVE-2024-44098 affects the LWIS component in lwis_event.c (Google Pixel). The issue is a double-free leading to a possible local privilege escalation with no required user interaction. The risk assessment is supported by multiple sources indicating Elevation of Privilege (EoP) concerns, ...

CVE-2024-44098

In lwisdeviceeventstatesclearlocked of lwisevent.c, there is a possible privilege escalation due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...