CVE-2024-49722Externally Controlled Reference to a Resource in Another Sphere in Frameworks Base

CWE-610Externally Controlled Reference to a Resource in Another Sphere5 documents5 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 99.24%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Platform Frameworks BaseGoogle Android
Timeline
PublishedSep 2
Latest updateSep 3

Description

In showAvatarPicker of EditUserPhotoController.java, there is a possible cross user image leak due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

Androidplatform/frameworks_base15-next:015-next:2025-04-01+1
CVEListV5google/android15
NVDgoogle/android15.0

🔴Vulnerability Details

3
GHSA
GHSA-vg73-3j94-8qw9: In showAvatarPicker of EditUserPhotoController2025-09-03
CVEList
CVE-2024-49722: In showAvatarPicker of EditUserPhotoController2025-09-02
OSV
CVE-2024-49722: In showAvatarPicker of EditUserPhotoController2025-04-01

📋Vendor Advisories

1
Android
CVE-2024-49722: Android Security Bulletin 2025-04-01 CVE: CVE-2024-49722 Severity: HIGH Type: ID Affected AOSP versions: 15 References: A-341688848 [2]2025-04-01
CVE-2024-49722 — Platform Frameworks Base vulnerability | cvebase