CVE-2024-31328 in Androidinfo

Zusammenfassung

von MITRE • 02.03.2026

In broadcastIntentLockedTraced of BroadcastController.java, there is a possible way to launch arbitrary activities from the background on the paired companion phone due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

Google Android

Reservieren

29.03.2024

Veröffentlichung

02.03.2026

Moderieren

akzeptiert

Eintrag

VDB-348458

CPE

bereit

CWE

CWE-693 (bestätigt)

CVSS

8.8 (CISA-ADP)

EPSS

0.00066

KEV

nein

Aktivitäten

very low

Sektor

Homeoffice, Insurance, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2024-31328
NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-31328
CVE Details	https://www.cvedetails.com/cve/CVE-2024-31328/

◂ Zurück Übersicht Weiter ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!