In writeToParcel and createFromParcel of DcParamObject.java, there is a permission bypass due to a write size mismatch. This could lead to an elevation of privileges where the user can start an activity with system privileges, with no additional execution privileges needed. User interaction is not needed for exploitation.
References
Link | Resource |
---|---|
https://source.android.com/security/bulletin/2018-05-01 |
Configurations
No configuration.
History
20 Nov 2024, 17:35
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
Summary |
|
|
CWE | CWE-131 |
19 Nov 2024, 18:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-11-19 18:15
Updated : 2024-11-20 17:35
NVD link : CVE-2017-13315
Mitre link : CVE-2017-13315
CVE.ORG link : CVE-2017-13315
JSON object : View
Products Affected
No product.
CWE
CWE-131
Incorrect Calculation of Buffer Size