Lucene search
Google_androidVULNRICHMENT:CVE-2024-0024HistoryMay 07, 2024 - 9:03 p.m.
CVE-2024-0024
2024-05-0721:03:30
google_android
github.com
3
usermanagerservice
input validation
privilege escalation
local
exploitation
In multiple methods of UserManagerService.java, there is a possible failure to persist or enforce user restrictions due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
ADP Affected
[
{
"cpes": [
"cpe:2.3:o:google:android:12.0:-:*:*:*:*:*:*"
],
"vendor": "google",
"product": "android",
"versions": [
{
"status": "affected",
"version": "12.0"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:google:android:12l:*:*:*:*:*:*:*"
],
"vendor": "google",
"product": "android",
"versions": [
{
"status": "affected",
"version": "12l"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:google:android:13.0:-:*:*:*:*:*:*"
],
"vendor": "google",
"product": "android",
"versions": [
{
"status": "affected",
"version": "13.0"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*"
],
"vendor": "google",
"product": "android",
"versions": [
{
"status": "affected",
"version": "14.0"
}
],
"defaultStatus": "unknown"
}
]Related
cve
cve
CVE-2024-0024
2024-05-07 21:15:08
cvelist
cvelist
CVE-2024-0024
2024-05-07 21:03:30
nvd
nvd
CVE-2024-0024
2024-05-07 21:15:08
AI Score
7.5
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Related for VULNRICHMENT:CVE-2024-0024