VDB
CVE-2024-34679
CVE-2024-34679
PUBLISHED
CVSS 4 MEDIUM
Incorrect default permissions in Crane prior to SMR Nov-2024 Release 1 allows local attackers to access files with phone privilege.
EPSS 0.09% · 25.1th percentile
Risk Scores
CVSS 3.1
4
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
0.09%
25.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Samsung Mobile | Samsung Mobile Devices | SMR Nov-2024 Release in Android 14 |
| samsung | android | 14.0, 14.0, 14.0 |
Timeline
- Nov 6, 2024 EPSS Score
- Nov 6, 2024 Coalition ESS Score
- Nov 6, 2024 CVE Published
- Nov 6, 2024 PoC Published
- Nov 6, 2024 PoC Published
- Nov 12, 2024 Coalition ESS Score
- Nov 12, 2024 CVE Updated
- Nov 24, 2024 EPSS Score
- Dec 13, 2024 EPSS Score
- Dec 31, 2024 EPSS Score
- Jan 18, 2025 EPSS Score
- Feb 4, 2025 EPSS Score