Platform External Conscrypt vulnerabilities
2 known vulnerabilities affecting platform/external_conscrypt.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
UNKNOWN2
Vulnerabilities
Page 1 of 1
CVE-2024-49723UNKNOWN≥ 15-next:0, < 15-next:2025-02-01≥ 15:0, < 15:2025-02-012025-02-01
CVE-2024-49723 CVE-2024-49723: In static of NativeCrypto
In static of NativeCrypto.java, there is a possible way to obtain clear-text data due to improperly used crypto. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
osv
CVE-2023-40104UNKNOWN≥ 14-next:0, < 14-next:2023-11-012023-11-01
CVE-2023-40104 CVE-2023-40104: In ca-certificates, there is a possible way to read encrypted TLS data due to untrusted cryptographic certificates
In ca-certificates, there is a possible way to read encrypted TLS data due to untrusted cryptographic certificates. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
osv