VDB

CISA-2024-0016

CISA-2024-0016 PUBLISHED CVSS 6.5 MEDIUM

Reported by google_android · Published February 16, 2024

In multiple locations, there is a possible out of bounds read due to a missing bounds check. This could lead to paired device information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

Risk Scores

CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Affected Products

VendorProductVersions
GoogleAndroid14, 13, 12L
GoogleAndroid14, 13, 12L

Timeline

  • Feb 16, 2024 CVE Published
  • Oct 31, 2024 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›