CVE-2024-49742

Published Jan 21, 2025

Last updated 9 days ago

Overview

Description
In onCreate of NotificationAccessConfirmationActivity.java , there is a possible way to hide an app with notification access in Settings due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
Source
security@android.com
NVD status
Awaiting Analysis

Weaknesses

134c704f-9b21-4f2e-91b3-4a467353bcc0
CWE-862

Social media

Hype score
Not currently trending

  1. CVE-2024-49742 Local Privilege Escalation via Missing Permission Check in Android https://t.co/9fYizO5KwX

    @VulmonFeeds

    22 Jan 2025

    4 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References