CVERadar

CVE-2024-0015

Medium Severity

Google

SVRS

30/100

CVSSv3

7.8/10

EPSS

0.03093/1

CVE-2024-0015 is a local escalation of privilege vulnerability in DreamService.java that could allow attackers to launch protected activities via intent redirection. Exploitation requires user execution privileges, but no user interaction. The SVRS score is 30, indicating a lower immediate risk compared to critical vulnerabilities, but still requires monitoring, especially given active exploits. CVE-2024-0015 in Android DreamService could allow malicious applications to bypass security restrictions. This could permit attackers with local access to execute privileged actions. Although the CVSS score is 7.8 (High), the SVRS suggests the real-world threat may not be critical at this moment. However, the presence of "Exploit Available" and "In The Wild" tags indicates active exploitation, elevating the urgency of patching systems. Organizations should prioritize patching vulnerable systems to prevent potential privilege escalation.

TAGS

In The Wild

Exploit Avaliable

VECTOR STRING

CVSS:3.1

AV:L

AC:L

PR:L

UI:N

S:U

C:H

I:H

A:H

PUBLICATION DATE2025-03-14

LAST MODIFIED2024-02-16

SOCRadar

AI Insight

Description:

CVE-2024-0015 is a vulnerability in DreamService.java that allows an attacker to launch arbitrary protected activities due to intent redirection. This could lead to local escalation of privilege with User execution privileges needed. The vulnerability has a CVSS score of 0, indicating a low severity. However, SOCRadar's SVRS assigns it a score of 38, indicating a moderate risk.

Key Insights:

The vulnerability can be exploited without user interaction, making it easier for attackers to compromise systems.
The vulnerability could allow attackers to escalate privileges to the level of User, giving them access to sensitive data and system resources.
The vulnerability is not currently being actively exploited in the wild, but it is possible that attackers could develop exploits in the future.

Mitigation Strategies:

Update DreamService.java to the latest version.
Restrict access to the vulnerable code.
Implement additional security measures, such as input validation and authorization checks, to prevent attackers from exploiting the vulnerability.

Additional Information:

Threat Actors/APT Groups: None identified.
Exploit Status: No active exploits have been published.
CISA Warnings: None issued.
In the Wild: No known exploitation.

If users have additional queries regarding this incident, they can use the 'Ask to Analyst' feature, contact SOCRadar directly, or open a support ticket for more information if necessary.

Indicators of Compromise

No IOCs found for this CVE

Exploits

Title	Software Link	Date
UmVfX1BvaW50/CVE-2024-0015	https://github.com/UmVfX1BvaW50/CVE-2024-0015	2024-03-19

Enhance Your CVE Management with SOCRadar Vulnerability Intelligence

Get comprehensive CVE details, real-time notifications, and proactive threat management all in one platform.

CREATE FREE ACCOUNT

CVE Details

Access comprehensive CVE information instantly

Real-time Tracking

Subscribe to CVEs and get instant updates

Exploit Analysis

Monitor related APT groups and threats

IOC Tracking

Analyze and track CVE-related IOCs

News

CVE-2024-0015 | Google Android 11/12/12L/13 DreamService.java convertToComponentName redirect

vuldb.com2024-12-16

CVE-2024-0015 | Google Android 11/12/12L/13 DreamService.java convertToComponentName redirect | A vulnerability has been found in Google Android 11/12/12L/13 and classified as problematic. This vulnerability affects the function convertToComponentName of the file DreamService.java. The manipulation leads to open redirect. This vulnerability was named CVE-2024-0015. The attack needs to be approached locally. There is no exploit available. It

vuldb.com

rss

forum

news

Social Media

No tweets found for this CVE

Affected Software

Configuration 1

Type	Vendor	Product
OS	Google	android

References

Reference	Link
[email protected]	https://android.googlesource.com/platform/frameworks/base/+/2ce1b7fd37273ea19fbbb6daeeaa6212357b9a70
[email protected]	https://source.android.com/security/bulletin/2024-01-01
AF854A3A-2127-422B-91AE-364DA2661108	https://android.googlesource.com/platform/frameworks/base/+/2ce1b7fd37273ea19fbbb6daeeaa6212357b9a70
AF854A3A-2127-422B-91AE-364DA2661108	https://source.android.com/security/bulletin/2024-01-01
[email protected]	https://android.googlesource.com/platform/frameworks/base/+/2ce1b7fd37273ea19fbbb6daeeaa6212357b9a70
[email protected]	https://source.android.com/security/bulletin/2024-01-01

CWE Details

No CWE details found for this CVE

CVE Radar

Real-time CVE Intelligence & Vulnerability Management Platform

CVE Radar provides comprehensive vulnerability intelligence by monitoring CVE databases, security advisories, and threat feeds. Get instant updates on new vulnerabilities, exploit details, and mitigation strategies specific to your assets.

Get Free Vulnerability Intelligence AccessAccess real-time CVE monitoring, exploit analysis, and threat intelligence