CVE-2024-34664 — Improper Check for Unusual or Exceptional Conditions in Google Android

CWE-754 — Improper Check for Unusual or Exceptional Conditions2 documents2 sources

Severity

2.4LOWNVD

EPSS

0.0%

top 97.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Google Android

Timeline

PublishedOct 8

Description

Improper check for exception conditions in Knox Guard prior to SMR Oct-2024 Release 1 allows physical attackers to bypass Knox Guard in a multi-user environment.

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NExploitability: 0.9 | Impact: 1.4

Affected Packages1 packages

▶NVDgoogle/android12.0, 13.0, 14.0+2

🔴Vulnerability Details

GHSA

GHSA-4hm6-4hpq-w2v7: Improper check for exception conditions in Knox Guard prior to SMR Oct-2024 Release 1 allows physical attackers to bypass Knox Guard in a multi-user e↗2024-10-08

▶