admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 01:02:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2024/CVE-2024-497xx/CVE-2024-49744.json
cad-safe-bot 954d1d057f Auto-Update: 2025-02-18T21:00:46.238884+00:00
2025-02-18 21:04:14 +00:00

25 lines
1.2 KiB
JSON
Raw Blame History

{
"id": "CVE-2024-49744",
"sourceIdentifier": "security@android.com",
"published": "2025-01-21T23:15:14.880",
"lastModified": "2025-02-18T20:15:20.720",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In checkKeyIntentParceledCorrectly of AccountManagerService.java, there is a possible way to bypass parcel mismatch mitigation due to unsafe deserialization. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation."
},
{
"lang": "es",
"value": "En checkKeyIntentParceledCorrectly de AccountManagerService.java, existe una forma posible de evitar la mitigaci\u00f3n de la falta de coincidencia de paquetes debido a una deserializaci\u00f3n insegura. Esto podr\u00eda provocar una escalada local de privilegios sin necesidad de permisos de ejecuci\u00f3n adicionales. Se necesita la interacci\u00f3n del usuario para la explotaci\u00f3n."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/2025-01-01",
"source": "security@android.com"
}
]
}
Reference in New Issue View Git Blame Copy Permalink