Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-34637

Improper access control in WindowManagerService prior to SMR Sep-2024 Release 1 in Android 12, and SMR Jun-2024 Release 1 in Android 13 and Android 14 allows local attackers to bypass restrictions on starting services from the background.

Published

2024-09-04T06:15:11.377

Last Modified

2024-09-05T18:05:27.753

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.2 (MEDIUM)

Weaknesses
  • Type: Primary
    NVD-CWE-Other
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System samsung android 12.0 Yes
Operating System samsung android 12.0 Yes
Operating System samsung android 13.0 Yes
Operating System samsung android 13.0 Yes
Operating System samsung android 14.0 Yes
Operating System samsung android 14.0 Yes
References