Back

CVE-2024-29780

June 13, 2024, 9:15 p.m.

Received
CVE has been recently published to the CVE List and has been received by the NVD.

Products

UNKNOWN

Source

dsap-vuln-management@google.com

Tags

2024-06-13
dsap-vuln-management@google.com
CVE-2024-29780

CVE-2024-29780 details

Published : June 13, 2024, 9:15 p.m.
Last Modified : June 13, 2024, 9:15 p.m.

Description

In hwbcc_ns_deprivilege of trusty/user/base/lib/hwbcc/client/hwbcc.c, there is a possible uninitialized stack data disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description

References

URL Source
https://source.android.com/security/bulletin/pixel/2024-06-01 dsap-vuln-management@google.com
This website uses the NVD API, but is not approved or certified by it.