VDB
ASB-A-352520660
ASB-A-352520660
PUBLISHED
CVSS 8.600000381469727 HIGH
In binder_transaction of binder.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Risk Scores
CVSS v4.0
8.600000381469727
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Android | :linux_kernel: | :0, Kernel, * |
Timeline
- Nov 1, 2024 CVE Published
- May 15, 2026 CVE Updated
References
- https://source.android.com/security/bulletin/2024-11-01 advisory
- https://android.googlesource.com/kernel/common/+/f4e5b5151e55932279287c55d4e4a801fbf1df96 patch
- https://android.googlesource.com/kernel/common/+/135a19cfad1e5e9c1db63970df743c28f5dd74c8 patch
- https://android.googlesource.com/kernel/common/+/c2201dde2a76788b5b7a75426e53a58e1490a028 patch
- https://android.googlesource.com/kernel/common/+/6a1de5f5d37141467efb9e5d9b3844a19f9990a9 patch
- https://android.googlesource.com/kernel/common/+/ae7e5da1cae2b6be45f7c6ab6a70d35f6e532d5a patch
- https://android.googlesource.com/kernel/common/+/30efc10dfe20bbf7410adb3d756106f365ac75cc patch
- https://android.googlesource.com/kernel/common/+/370ea8bc2e0b1c4880c41bbfc2b01bac973209b9 patch
- https://android.googlesource.com/kernel/common/+/b42ed94769088450987f2b52f41a3fb274244827 patch