Severity
Medium
Analysis Summary
CVE-2024-56184 CVSS:6.2
Google Android could allow a local attacker to obtain sensitive information, caused by out-of-bounds read due to an incorrect bounds check in static long dev_send of tipc_dev_ql.
CVE-2024-56186 CVSS:6.2
Google Android could allow a local attacker to obtain sensitive information, caused by out-of-bounds read due to an incorrect bounds check in closeChannel of secureelementimpl.cpp.
CVE-2024-56184 CVSS:6.2
Google Android could allow a local attacker to obtain sensitive information, caused by out-of-bounds read due to an incorrect bounds check in static long dev_send of tipc_dev_ql.
Impact
- Information Disclosure
Indicators of Compromise
CVE
CVE-2024-56185
CVE-2024-56186
CVE-2024-56184
Affected Vendors
Affected Products
- Google Android
Remediation
Upgrade to the latest version of Android, available from the Google Website.