In scheme of Uri.java, there is a possible way to craft a malformed Uri object due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
References
Configurations
No configuration.
History
11 Sep 2024, 14:35
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-269 | |
Summary |
|
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
11 Sep 2024, 00:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-09-11 00:15
Updated : 2024-09-11 16:26
NVD link : CVE-2024-40662
Mitre link : CVE-2024-40662
CVE.ORG link : CVE-2024-40662
JSON object : View
Products Affected
No product.
CWE
CWE-269
Improper Privilege Management