In DevmemIntUnexportCtx of devicemem_server.c, there is a possible arbitrary code execution due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://source.android.com/security/bulletin/2024-07-01 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: google_android
Published: 2024-07-09T20:11:28.354Z
Updated: 2024-08-02T02:59:21.787Z
Reserved: 2024-05-07T20:40:11.086Z
Link: CVE-2024-34725
Vulnrichment
Updated: 2024-08-02T02:59:21.787Z
NVD
Status : Awaiting Analysis
Published: 2024-07-09T21:15:14.593
Modified: 2024-08-01T13:52:25.887
Link: CVE-2024-34725
Redhat
No data.