Possible Out-of-Bounds Read Leading to Local Information Disclosure in ProtocolMiscHwConfigChangeAdapter

CVE-2024-47015

Currently unrated 🤨

Key Information

Vendor: Google
Status: Android
Vendor: CVE Published:; 25 October 2024

Summary

In ProtocolMiscHwConfigChangeAdapter::GetData() of protocolmiscadapter.cpp, there is a possible out-of-bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User Interaction is not needed for exploitation.

Affected Version(s)

Android = Android kernel

Timeline

Vulnerability published.
Oct 25, 2024
Vulnerability Reserved.
Sep 16, 2024

Collectors

NVD DatabaseMitre Database