Undeclared Permission Vulnerability in Android Devices by Google
CVE-2024-11624
Currently unrated
What is CVE-2024-11624?
The vulnerability in Android devices, identified as CVE-2024-11624, exposes a significant security issue due to undeclared permissions. This flaw allows malicious applications to bypass the device's VPN settings, enabling unauthorized installations and modifications without the need for user interaction. The local privilege escalation capability raises concerns about the overall security posture of affected Android versions, particularly those in the Pixel series. Mitigating this risk is crucial for maintaining the integrity of user data and device security.