Design/Logic Flaw

2024-02-1523:15:00

PRIOn knowledge base

www.prio-n.com

artpwriter

use after free

privilege escalation

uninitialized data

nvd

7.7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

In ARTPWriter of ARTPWriter.cpp, there is a possible use after free due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

References

android.googlesource.com/platform/frameworks/av/+/acb81624b4f50fed52cb1b3829809ee2f7377093

source.android.com/security/bulletin/2023-11-01