Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-20024


In flashc, there is a possible out of bounds write due to lack of valudation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541635; Issue ID: ALPS08541635.


Published

2024-03-04T03:15:07.237

Last Modified

2025-04-22T20:36:49.887

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.0 (MEDIUM)

Weaknesses
  • Type: Secondary
    CWE-787

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System google android 12.0 Yes
Operating System google android 13.0 Yes
Operating System google android 14.0 Yes
Hardware mediatek mt6781 - No
Hardware mediatek mt6789 - No
Hardware mediatek mt6833 - No
Hardware mediatek mt6835 - No
Hardware mediatek mt6879 - No
Hardware mediatek mt6886 - No
Hardware mediatek mt6895 - No
Hardware mediatek mt6983 - No
Hardware mediatek mt6985 - No
Hardware mediatek mt6989 - No
Hardware mediatek mt8666 - No
Hardware mediatek mt8666a - No
Hardware mediatek mt8666b - No
Hardware mediatek mt8667 - No
Hardware mediatek mt8673 - No
Hardware mediatek mt8676 - No
Hardware mediatek mt8678 - No

References