CVE-2024-43080
published 2024-11-13CVE-2024-43080: In onReceive of AppRestrictionsFragment.java, there is a possible escalation of privilege due to unsafe deserialization. This could lead to local escalation of…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
In onReceive of AppRestrictionsFragment.java, there is a possible escalation of privilege due to unsafe deserialization. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| platform | packages_apps_settings | >= 12:0 < 12:2024-11-01 | 12:2024-11-01 |
| platform | packages_apps_settings | >= 12L:0 < 12L:2024-11-01 | 12L:2024-11-01 |
| platform | packages_apps_settings | >= 13:0 < 13:2024-11-01 | 13:2024-11-01 |
| platform | packages_apps_settings | >= 14:0 < 14:2024-11-01 | 14:2024-11-01 |
| platform | packages_apps_settings | >= 15-next:0 < 15-next:2024-11-01 | 15-next:2024-11-01 |