Vulnerabilities

CVE-2024-0041

by Fred · 15/02/2024

In removePersistentDot of SystemStatusAnimationSchedulerImpl.kt, there is a possible race condition due to a logic error in the code. This could lead to local escalation of privilege that fails to remove the persistent dot with no additional execution privileges needed. User interaction is not needed for exploitation.

Date published : 2024-02-15

https://android.googlesource.com/platform/frameworks/base/+/d6f7188773409c8f5ad5fc7d3eea5b1751439e26

https://source.android.com/security/bulletin/2024-02-01

Related

Tags: Cybersecurity Alert