In _MMU_AllocLevel of mmu_common.c, there is a possible arbitrary code execution due to an integer overflow. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://source.android.com/security/bulletin/2024-08-01 |
History
Fri, 16 Aug 2024 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Google
Google android Imaginationtech Imaginationtech powervr-gpu |
|
Weaknesses | CWE-190 | |
CPEs | cpe:2.3:h:imaginationtech:powervr-gpu:-:*:*:*:*:*:*:* cpe:2.3:o:google:android:*:*:*:*:*:*:*:* |
|
Vendors & Products |
Google
Google android Imaginationtech Imaginationtech powervr-gpu |
|
Metrics |
cvssV3_1
|
Thu, 15 Aug 2024 22:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | In _MMU_AllocLevel of mmu_common.c, there is a possible arbitrary code execution due to an integer overflow. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: google_android
Published: 2024-08-15T21:56:30.339Z
Updated: 2024-08-16T14:25:24.616Z
Reserved: 2024-03-29T20:12:57.128Z
Link: CVE-2024-31333
Vulnrichment
Updated: 2024-08-16T14:25:09.383Z
NVD
Status : Awaiting Analysis
Published: 2024-08-15T22:15:06.123
Modified: 2024-08-19T13:00:23.117
Link: CVE-2024-31333
Redhat
No data.