MssGmz99

1 exploit Active since Jul 2024
CVE-2024-31319 NOMISEC HIGH WRITEUP
Android - Local Privilege Escalation via Notification Channel Update Confused Deputy
In updateNotificationChannelFromPrivilegedListener of NotificationManagerService.java, there is a possible cross-user data leak due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CVSS 7.8