CVE-2024-39428

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Published Jul 1, 2024

CWE ID 787

Summary

CVE-2024-39428 is a newly identified vulnerability that affects the "trusty service" component. This issue involves a missing bounds check leading to an out-of-bounds write.Hackers can exploit this vulnerability to cause a local denial of service, and to achieve system-level execution privileges, making it a significant security concern. The specific cause of the out-of-bounds write and the precise impact on the system have not been disclosed, but the severity rating suggests that urgent attention is required for mitigation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/wpI6kF
https://www.cve.org/CVERecord?id=CVE-2024-39428
https://nvd.nist.gov/vuln/detail/CVE-2024-39428

Back to Vulnerability Database