In isSlotMarkedSuccessful of BootControl.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
An out of bounds read error (CWE-125) occurs in the isSlotMarkedSuccessful function of the BootControl.cpp component. Due to lack of array or buffer boundary verification, it is possible to read data outside the intended memory area. The attacker does not need additional execution privileges or user interaction to trigger this vulnerability locally.
An attacker with local access to the device can obtain unauthorized access to sensitive data stored in memory outside the intended buffer. The vulnerability leads to information disclosure (local information disclosure), without the possibility of direct code execution.
Security patches available from the vendor should be applied according to references — Google Pixel security bulletin published 2024-11-01: https://source.android.com/security/bulletin/pixel/2024-11-01
Google Android — specific versions indicated in vendor references (Pixel security bulletin from 2024-11-01)
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XGoogle Android
OSGoogle10.0
Related vulnerabilities
Heap buffer overflow in UI in Google Chrome on Android prior to 86.0.4240.185 allowed a remote attacker who ha...
Adobe Flash Player 21.0.0.197 and earlier allows remote attackers to cause a denial of service (application cr...
Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4...
Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.4...
Insufficient validation of untrusted input in Text in Google Chrome on Android prior to 150.0.7871.47 allowed ...