CVE-2024-32903
June 13, 2024, 9:15 p.m.
Tags
Product(s) Impacted
UNKNOWN
Description
In prepare_response_locked of lwis_transaction.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Weaknesses
Date
Published: June 13, 2024, 9:15 p.m.
Last Modified: June 13, 2024, 9:15 p.m.
Status : Received
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
dsap-vuln-management@google.com
References
https://source.android.com/
dsap-vuln-management@google.com