Vulnerabilities > CVE-2024-20833 - Use After Free vulnerability in Samsung Android 11.0/12.0

047910
CVSS 6.4 - MEDIUM
Attack vector
LOCAL
Attack complexity
HIGH
Privileges required
HIGH
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
high complexity
samsung
CWE-416
NVD
Published: 2024-03-05
Updated: 2025-02-10

Summary

Use after free vulnerability in pub_crypto_recv_msg prior to SMR Mar-2024 Release 1 due to race condition allows local attackers with system privilege to cause memory corruption.

Vulnerable Configurations

Part Description Count
OS
Samsung
127

Common Weakness Enumeration (CWE)

References