CVE-2024-47019
- EPSS 0.08%
- Veröffentlicht 25.10.2024 11:15:16
- Zuletzt bearbeitet 28.10.2024 18:00:37
In ProtocolEmbmsSaiListAdapter::Init() of protocolembmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User Interaction is ...
CVE-2024-47020
- EPSS 0.16%
- Veröffentlicht 25.10.2024 11:15:16
- Zuletzt bearbeitet 28.10.2024 21:35:17
Android before 2024-10-05 on Google Pixel devices allows information disclosure in the ABL component, A-331966488.
CVE-2024-47021
- EPSS 0.21%
- Veröffentlicht 25.10.2024 11:15:16
- Zuletzt bearbeitet 28.10.2024 21:35:17
In sms_ExtractCbLanguage of sms_CellBroadcast.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for...
CVE-2024-47022
- EPSS 0.16%
- Veröffentlicht 25.10.2024 11:15:16
- Zuletzt bearbeitet 28.10.2024 21:35:18
Android before 2024-10-05 on Google Pixel devices allows information disclosure in the ACPM component, A-331255656.
CVE-2024-39440
- EPSS 0.08%
- Veröffentlicht 09.10.2024 07:15:09
- Zuletzt bearbeitet 17.10.2024 17:33:48
In DRM service, there is a possible system crash due to null pointer dereference. This could lead to local denial of service with System execution privileges needed.
CVE-2024-39437
- EPSS 0.25%
- Veröffentlicht 09.10.2024 07:15:08
- Zuletzt bearbeitet 17.10.2024 17:18:45
In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.
CVE-2024-39438
- EPSS 0.25%
- Veröffentlicht 09.10.2024 07:15:08
- Zuletzt bearbeitet 17.10.2024 17:19:11
In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.
CVE-2024-39439
- EPSS 0.08%
- Veröffentlicht 09.10.2024 07:15:08
- Zuletzt bearbeitet 17.10.2024 17:32:05
In DRM service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVE-2024-39436
- EPSS 0.25%
- Veröffentlicht 09.10.2024 07:15:06
- Zuletzt bearbeitet 17.10.2024 17:16:04
In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.
CVE-2024-34663
- EPSS 0.08%
- Veröffentlicht 08.10.2024 07:15:03
- Zuletzt bearbeitet 17.07.2025 17:36:21
Integer overflow in libSEF.quram.so prior to SMR Oct-2024 Release 1 allows local attackers to write out-of-bounds memory.