CVE-2024-49747 - How a Logic Flaw in Bluetooth’s GATT Server Could Let Hackers Run Code Remotely
Bluetooth is everywhere – in our headphones, smartphones, TVs, cars. It feels as reliable and as safe as the air we breathe. But sometimes, serious bugs
CVE-2024-49749 - DGifSlurp Integer Overflow in GIFLIB - From Vulnerability to Exploit
GIF images are one of the simplest yet most widely used image formats on the internet, from memes to website animations. Under the hood, parsing
CVE-2024-49735 - Local Privilege Escalation via Resource Exhaustion in Permission Persistence
In June 2024, security researchers discovered and disclosed CVE-2024-49735, a local privilege escalation vulnerability affecting several open-source and proprietary systems. This bug makes it possible
CVE-2024-49742 - Hiding Apps with Notification Access in Android Settings via Missing Permission Check
Summary
On May 24, 2024, a vulnerability tracked as CVE-2024-49742 was discovered in the Android Open Source Project (AOSP), specifically in the NotificationAccessConfirmationActivity.java file.
CVE-2024-49737 - Escalating Privileges via taskFragmentOperation in Android's WindowOrganizerController
In early 2024, security researchers discovered a significant vulnerability in Android's system component — specifically within WindowOrganizerController.java. The flaw, registered as CVE-2024-49737, allows
Episode
00:00:00
00:00:00