CVE-2024-20883 β€” Samsung Android vulnerability

4 documents4 sources
Severity
7.8HIGHNVD
CNA6.2
EPSS
0.2%
top 62.79%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Samsung Android
Timeline
PublishedJun 4

Description

Incorrect use of privileged API vulnerability in registerBatteryStatsCallback in BatteryStatsService prior to SMR Jun-2024 Release 1 allows local attackers to use privileged API.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

β–ΆNVDsamsung/android14.0

πŸ”΄Vulnerability Details

2
CVEList
CVE-2024-20883: Incorrect use of privileged API vulnerability in registerBatteryStatsCallback in BatteryStatsService prior to SMR Jun-2024 Release 1 allows local atta↗2024-06-04
β–Ά
GHSA
GHSA-gc36-7fp5-p893: Incorrect use of privileged API vulnerability in registerBatteryStatsCallback in BatteryStatsService prior to SMR Jun-2024 Release 1 allows local atta↗2024-06-04
β–Ά

πŸ“‹Vendor Advisories

1
Oracle
Oracle Oracle Communications Applications Risk Matrix: PSR Designer (Spring Boot) β€” CVE-2023-20883β†—2024-01-15
β–Ά
CVE-2024-20883 β€” Samsung Android vulnerability | cvebase