CVE-2024-20060
MEDIUMDescription
In da, there is a possible escalation of privilege due to an incorrect status check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541749; Issue ID: ALPS08541754.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| android | |
| android | |
| android | |
| mediatek | mt6580 |
| mediatek | mt6739 |
| mediatek | mt6761 |
| mediatek | mt6765 |
| mediatek | mt6768 |
| mediatek | mt6781 |
| mediatek | mt6789 |
| mediatek | mt6833 |
| mediatek | mt6835 |
| mediatek | mt6853 |
| mediatek | mt6855 |
| mediatek | mt6877 |
| mediatek | mt6879 |
| mediatek | mt6883 |
| mediatek | mt6885 |
| mediatek | mt6886 |
| mediatek | mt6889 |
| mediatek | mt6893 |
| mediatek | mt6895 |
| mediatek | mt6983 |
| mediatek | mt6985 |
| mediatek | mt6989 |
| mediatek | mt8188 |
| mediatek | mt8370 |
| mediatek | mt8390 |
References
Frequently Asked Questions
What is CVE-2024-20060? +
How severe is CVE-2024-20060? +
What products are affected by CVE-2024-20060? +
How do I check if I'm vulnerable to CVE-2024-20060? +
Related Vulnerabilities
On arm64, a WASM `br_table` instruction with a lot of entries could lead to the label being too far from …
In da, there is a possible escalation of privilege due to an incorrect status check. This could lead to local …
In Package Manager, there is a possible device lock controller bypass due to a missing permission check. This could lead …
Sandbox escape in the JavaScript Task feature of Google Cloud Application Integration allows an actor to execute arbitrary unsandboxed code …
An attacker in the wifi vicinity of a target Google Home can spy on the victim, resulting in Elevation of …
Google Nest WiFi Pro root code-execution & user-data compromise