CVE-2024-20884

CVSS 3.1 Score 6.2 of 10 (medium)

Details

Published Jun 4, 2024

Summary

CVE-2024-20884 is a privileged API misuse vulnerability affecting the getSemBatteryUsageStats function in BatteryStatsService before the SMR Jun-2024 Release 1. This issue stems from incorrect usage of privileged APIs, enabling local attackers to unauthorizedly access and utilize these privileged functions. The exploitation of this vulnerability could potentially lead to significant security implications, underscoring the importance of promptly applying the necessary updates to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/wRRY9p
https://www.cve.org/CVERecord?id=CVE-2024-20884
https://nvd.nist.gov/vuln/detail/CVE-2024-20884

Back to Vulnerability Database

CVE-2024-20884

CVSS 3.1 Score 6.2 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations