CVE-2024-44100

Android before 2024-10-05 on Google Pixel devices allows information disclosure in the modem component, A-299774545.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Google ≫ Android Version < 2024-10-05

   Google ≫ Pixel Version-
   Google ≫ Pixel 2 Version-
   Google ≫ Pixel 2 Xl Version-
   Google ≫ Pixel 3 Version-
   Google ≫ Pixel 3 Xl Version-
   Google ≫ Pixel 3a Version-
   Google ≫ Pixel 3a Xl Version-
   Google ≫ Pixel 4 Version-
   Google ≫ Pixel 4 Xl Version-
   Google ≫ Pixel 4a Version-
   Google ≫ Pixel 4a 5g Version-
   Google ≫ Pixel 5 Version-
   Google ≫ Pixel 5a Version-
   Google ≫ Pixel 6 Version-
   Google ≫ Pixel 6 Pro Version-
   Google ≫ Pixel 6a Version-
   Google ≫ Pixel 7 Version-
   Google ≫ Pixel 7 Pro Version-
   Google ≫ Pixel 7a Version-
   Google ≫ Pixel 8 Version-
   Google ≫ Pixel 8 Pro Version-
   Google ≫ Pixel 8a Version-
   Google ≫ Pixel 9 Version-
   Google ≫ Pixel 9 Pro Version-
   Google ≫ Pixel 9 Pro Fold Version-
   Google ≫ Pixel C Version-
   Google ≫ Pixel Fold Version-
   Google ≫ Pixel Pro Xl Version-
   Google ≫ Pixel Slate Version-
   Google ≫ Pixel Tablet Version-
   Google ≫ Pixel Xl Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.1%	0.271

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
134c704f-9b21-4f2e-91b3-4a467353bcc0	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-276 Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

Vendor Advisory

CVE Source (NVD)

CVE Source (JSON)

EUVD