In installExistingPackageAsUser of InstallPackageHelper.java, there is a possible carrier restriction bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Metrics
Affected Vendors & Products
References
History
Mon, 16 Dec 2024 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Google
Google android |
|
Weaknesses | NVD-CWE-noinfo | |
CPEs | cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:* cpe:2.3:o:google:android:12.1:*:*:*:*:*:*:* cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:* cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:* |
|
Vendors & Products |
Google
Google android |
MITRE
Status: PUBLISHED
Assigner: google_android
Published: 2024-03-11T16:35:21.955Z
Updated: 2024-08-05T19:38:52.146Z
Reserved: 2023-11-16T22:59:24.069Z
Link: CVE-2024-0046
Vulnrichment
Updated: 2024-08-01T17:41:15.594Z
NVD
Status : Analyzed
Published: 2024-03-11T17:15:45.563
Modified: 2024-12-16T19:50:16.587
Link: CVE-2024-0046
Redhat
No data.