Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-20037


In pq, there is a possible write-what-where condition due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08495937; Issue ID: ALPS08495937.


Published

2024-03-04T03:15:07.760

Last Modified

2025-04-22T20:23:37.533

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.7 (MEDIUM)

Weaknesses
  • Type: Secondary
    CWE-754

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System google android 12.0 Yes
Operating System google android 13.0 Yes
Operating System google android 14.0 Yes
Hardware mediatek mt6739 - No
Hardware mediatek mt6761 - No
Hardware mediatek mt6765 - No
Hardware mediatek mt6768 - No
Hardware mediatek mt6779 - No
Hardware mediatek mt6781 - No
Hardware mediatek mt6785 - No
Hardware mediatek mt6789 - No
Hardware mediatek mt6833 - No
Hardware mediatek mt6835 - No
Hardware mediatek mt6853 - No
Hardware mediatek mt6855 - No
Hardware mediatek mt6873 - No
Hardware mediatek mt6877 - No
Hardware mediatek mt6879 - No
Hardware mediatek mt6883 - No
Hardware mediatek mt6885 - No
Hardware mediatek mt6886 - No
Hardware mediatek mt6889 - No
Hardware mediatek mt6893 - No
Hardware mediatek mt6895 - No
Hardware mediatek mt6897 - No
Hardware mediatek mt6983 - No
Hardware mediatek mt6985 - No
Hardware mediatek mt6989 - No
Hardware mediatek mt8168 - No
Hardware mediatek mt8188 - No
Hardware mediatek mt8195 - No
Hardware mediatek mt8673 - No
Hardware mediatek mt8675 - No

References