CVE-2024-34663Integer Overflow or Wraparound in Google Android

CWE-190Integer Overflow or Wraparound2 documents2 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 88.94%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Android
Timeline
PublishedOct 8

Description

Integer overflow in libSEF.quram.so prior to SMR Oct-2024 Release 1 allows local attackers to write out-of-bounds memory.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages1 packages

NVDgoogle/android12.0, 13.0, 14.0+2

🔴Vulnerability Details

1
GHSA
GHSA-93ph-325j-77qr: Integer overflow in libSEF2024-10-08