4 matches found
CVE-2024-31317
In multiple functions of ZygoteProcess.java, there is a possible way to achieve code execution as any app via WRITESECURESETTINGS due to unsafe deserialization. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-31317
In multiple functions of ZygoteProcess.java, there is a possible way to achieve code execution as any app via WRITESECURESETTINGS due to unsafe deserialization. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-31317
In multiple functions of ZygoteProcess.java, there is a possible way to achieve code execution as any app via WRITESECURESETTINGS due to unsafe deserialization. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation...
PT-2024-23965
Name of the Vulnerable Software and Affected Versions Android affected versions not specified Description The issue is related to unsafe deserialization in multiple functions of ZygoteProcess.java, allowing code execution as any app via WRITE SECURE SETTINGS. This could lead to local escalation o...