CVE-2024-32897

June 13, 2024, 9:15 p.m.

Tags

2024-06-13
dsap-vuln-management@google.com
CVE-2024-32897

Product(s) Impacted

UNKNOWN

Description

In ProtocolCdmaCallWaitingIndAdapter::GetCwInfo() of protocolsmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation.

Weaknesses

Date

Published: June 13, 2024, 9:15 p.m.

Last Modified: June 13, 2024, 9:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

dsap-vuln-management@google.com

References

https://source.android.com/security/bulletin/pixel/2024-06-01
dsap-vuln-management@google.com