CVE-2024-31319

HIGH

Android - Local Privilege Escalation via Notification Channel Update Confused Deputy

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-31319. PoCs published by MssGmz99.

AI-analyzed exploit summary This repository provides a technical analysis and patch verification process for CVE-2024-31319, focusing on URI permission checks in NotificationListenerService. It includes git commands to verify patch application and revert unintended removals of the fix.

Description

In updateNotificationChannelFromPrivilegedListener of NotificationManagerService.java, there is a possible cross-user data leak due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Exploits (1)

nomisec WRITEUP
by MssGmz99 · poc
https://github.com/MssGmz99/fix-02-failure-CVE-2024-31319-CVE-2024-0039

This repository provides a technical analysis and patch verification process for CVE-2024-31319, focusing on URI permission checks in NotificationListenerService. It includes git commands to verify patch application and revert unintended removals of the fix.

Classification
Writeup 90%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Theoretical
Target: Android NotificationManagerService
Auth required
Prerequisites: Access to the target system's git repository · Knowledge of the affected commit history
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 7.8
EPSS 0.0017
EPSS Percentile 6.7%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-441 CWE-610
Status published
Products (4)
google/android 12.0
google/android 12.1
google/android 13.0
google/android 14.0
Published Jul 09, 2024
Tracked Since Feb 18, 2026