Vulnetix
Try Vulnetix Request Demo
ASB-A-250576066 PUBLISHED CVSS 8.600000381469727 HIGH

In pushDynamicShortcut of ShortcutPackage.java, there is a possible way to get the device into a boot loop due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

Risk Scores

CVSS v4.0
8.600000381469727
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Products

VendorProductVersions
platformframeworks/base13-next:0, 11:0, 11

Timeline

References

Open in Interactive Console →