CVE-2024-44100

Published: Oct 25, 2024Modified: Oct 28, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

Android before 2024-10-05 on Google Pixel devices allows information disclosure in the modem component, A-299774545.

Affected (1)

Products: Google: Android

1 product

Configuration A

1 vulnerable · 31 platform

Vulnerable Software	Affected Versions
Google Android	Before 2024-10-05

Running on/with	Platform Versions
Google Pixel	All versions
Google Pixel 2	All versions
Google Pixel 2 Xl	All versions
Google Pixel 3	All versions
Google Pixel 3 Xl	All versions
Google Pixel 3a	All versions
Google Pixel 3a Xl	All versions
Google Pixel 4	All versions
Google Pixel 4 Xl	All versions
Google Pixel 4a	All versions
Google Pixel 4a 5g	All versions
Google Pixel 5	All versions
Google Pixel 5a	All versions
Google Pixel 6	All versions
Google Pixel 6 Pro	All versions
Google Pixel 6a	All versions
Google Pixel 7	All versions
Google Pixel 7 Pro	All versions
Google Pixel 7a	All versions
Google Pixel 8	All versions
Google Pixel 8 Pro	All versions
Google Pixel 8a	All versions
Google Pixel 9	All versions
Google Pixel 9 Pro	All versions
Google Pixel 9 Pro Fold	All versions
Google Pixel C	All versions
Google Pixel Fold	All versions
Google Pixel Pro Xl	All versions
Google Pixel Slate	All versions
Google Pixel Tablet	All versions
Google Pixel Xl	All versions

Related CWEs

Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

References (1)

https://source.android.com/security/bulletin/pixel/2024-10-01

Source: dsap-vuln-management@google.com

Vendor Advisory

Timeline

No history available yet.