CVE-2024-0039

CRITICAL

Android - Out-of-bounds Write in Bluetooth ATT Protocol

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-0039. PoCs published by 41yn14.

AI-analyzed exploit summary This repository contains a functional Python exploit for CVE-2024-0039, which targets an Android vulnerability to achieve remote code execution via a malicious MP4 file. The exploit includes a ROP chain and reverse shell payload, with logging and unit tests for validation.

Description

In attp_build_value_cmd of att_protocol.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

Exploits (1)

nomisec WORKING POC 12 stars
by 41yn14 · poc
https://github.com/41yn14/CVE-2024-0039-Exploit

This repository contains a functional Python exploit for CVE-2024-0039, which targets an Android vulnerability to achieve remote code execution via a malicious MP4 file. The exploit includes a ROP chain and reverse shell payload, with logging and unit tests for validation.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: Android (specific version not specified)
No auth needed
Prerequisites: Target device running vulnerable Android version · Network connectivity for reverse shell callback
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4

Scores

CVSS v3 9.8
EPSS 0.0151
EPSS Percentile 71.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-787
Status published
Products (4)
google/android 12.0
google/android 12.1
google/android 13.0
google/android 14.0
Published Mar 11, 2024
Tracked Since Feb 18, 2026