Description

In PVRSRV_MMap of pvr_bridge_k.c, there is a possible arbitrary code execution due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.

Related CPE's

o

google

android

-

Vulnerable

References

https://source.android.com/security/bulletin/2024-07-01

Vendor Advisory

https://source.android.com/security/bulletin/2024-07-01

Vendor Advisory

Weaknesses

[email protected]

Primary
NVD-CWE-noinfo

134c704f-9b21-4f2e-91b3-4a467353bcc0

Secondary
CWE-783

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 · High

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2024-07-09T19:15:14.680Z

1 year ago

Last modified

2024-12-17T17:14:01.423Z

1 year ago