Rewterz

BianLian Ransomware – Active IOCs

December 6, 2024
Rewterz

Multiple Microsoft SQL Vulnerabilities

December 6, 2024

Multiple Google Android Vulnerabilities

Severity

Medium

Analysis Summary

CVE-2024-43086 CVSS:6.2

Google Android could allow a local attacker to obtain sensitive information, caused by a confused deputy in validateAccountsInternal of AccountManagerService.java. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information.

CVE-2024-43084 CVSS:6.2

Google Android could allow a local attacker to obtain sensitive information, caused by a confused deputy in visitUris of multiple files. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information.

CVE-2024-43082 CVSS:6.2

Google Android could allow a local attacker to obtain sensitive information, caused by a confused deputy in onActivityResult of EditUserPhotoController.java. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information.

CVE-2024-43083 CVSS:6.2

In validate of WifiConfigurationUtil.java , there is a possible persistent denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

Impact

  • Information Disclosure
  • Denial of Service

Indicators of Compromise

CVE

  • CVE-2024-43086
  • CVE-2024-43084
  • CVE-2024-43082
  • CVE-2024-43083

Affected Vendors

Google

Affected Products

  • Google Android

Remediation

Upgrade to the latest version of Android, available from the Google Website.

CVE-2024-43086

CVE-2024-43084

CVE-2024-43082

CVE-2024-43083

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.