admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-29 01:31:20 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2024/CVE-2024-313xx/CVE-2024-31310.json
cad-safe-bot 18d9db605c Auto-Update: 2024-08-01T14:00:22.673916+00:00
2024-08-01 14:03:18 +00:00

52 lines
2.1 KiB
JSON
Raw Blame History

{
"id": "CVE-2024-31310",
"sourceIdentifier": "security@android.com",
"published": "2024-07-09T21:15:12.773",
"lastModified": "2024-08-01T13:50:49.710",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In newServiceInfoLocked of AutofillManagerServiceImpl.java, there is a possible way to hide an enabled Autofill service app in the Autofill service settings due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation."
},
{
"lang": "es",
"value": "En newServiceInfoLocked de AutofillManagerServiceImpl.java, existe una manera posible de ocultar una aplicaci\u00f3n de servicio de Autocompletar habilitada en la configuraci\u00f3n del servicio de Autocompletar debido a una validaci\u00f3n de entrada incorrecta. Esto podr\u00eda conducir a una escalada local de privilegios sin necesidad de permisos de ejecuci\u00f3n adicionales. Se necesita la interacci\u00f3n del usuario para la explotaci\u00f3n."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://android.googlesource.com/platform/frameworks/base/+/74afbb05ca08738f66d82df867bbee66de4884bc",
"source": "security@android.com"
},
{
"url": "https://source.android.com/security/bulletin/2024-06-01",
"source": "security@android.com"
}
]
}
Reference in New Issue View Git Blame Copy Permalink