How severe is CVE-2024-47039?

CVE-2024-47039 has a CVSS v3 score of 5.5 (MEDIUM).

CVE-2024-47039

Name: android
Author: google

5.5MEDIUM

In isSlotMarkedSuccessful of BootControl.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privil

Published: 12/18/2024Updated: 7/24/2025

Description

In isSlotMarkedSuccessful of BootControl.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

AI AnalysisPowered by AI

Affected Products

googleandroid

10.0

References

https://source.android.com/security/bulletin/pixel/2024-11-01
Vendor Advisory