CVE-2024-20901

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 2, 2024

Updated: Jul 5, 2024

CWE ID 787

Summary

CVE-2024-20901 is a vulnerability affecting libsaped before the SMR Jul-2024 Release 1. This issue involves improper input validation during data copying to the buffer cache. Attackers can exploit this vulnerability by writing out-of-bounds memory, allowing them to execute arbitrary code and potentially gain local privileges. This could result in significant security risks and potential system compromise. It is recommended that users upgrade to the latest release of libsaped to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Samsung Android

Affected Vendors

Samsung

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/wxYnk0
https://www.cve.org/CVERecord?id=CVE-2024-20901
https://nvd.nist.gov/vuln/detail/CVE-2024-20901

Back to Vulnerability Database