Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2024-23717

In access_secure_service_from_temp_bond of btm_sec.cc, there is a possible way to achieve keystroke injection due to improper input validation. This could lead to remote (proximal/adjacent) escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.2%
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2024-23717
  • Google » Android » Version: 12.0
    cpe:2.3:o:google:android:12.0
  • Google » Android » Version: 12.1
    cpe:2.3:o:google:android:12.1
  • Google » Android » Version: 13.0
    cpe:2.3:o:google:android:13.0
  • Google » Android » Version: 14.0
    cpe:2.3:o:google:android:14.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved