Lucene search

K
vulnrichmentGoogle_DevicesVULNRICHMENT:CVE-2024-25987
HistoryMar 11, 2024 - 6:55 p.m.

CVE-2024-25987

2024-03-1118:55:36
Google_Devices
github.com
2
exploitation
bounds check
local privilege escalation
system execution privileges

AI Score

7.2

Confidence

High

SSVC

Exploitation

none

Automatable

no

Technical Impact

total

In pt_sysctl_command of pt.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*"
    ],
    "vendor": "google",
    "product": "android",
    "versions": [
      {
        "status": "affected",
        "version": "13.0"
      }
    ],
    "defaultStatus": "unknown"
  }
]

AI Score

7.2

Confidence

High

SSVC

Exploitation

none

Automatable

no

Technical Impact

total

Related for VULNRICHMENT:CVE-2024-25987