CVE-2024-39442 | THREATINT

Description

In sprd ssense service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

PUBLISHED Reserved 2024-06-25 | Published 2025-05-06 | Updated 2025-05-06 | Assigner Unisoc

MEDIUM: 6.2CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Problem types

cwe-862 Missing Authorization

Product status

Default status

unaffected

Android13/Android14/Android15

affected

References

www.unisoc.com/...ecy/announcementDetail/1919552952486395905

cve.org (CVE-2024-39442)

nvd.nist.gov (CVE-2024-39442)

Download JSON