Vulnerability Database

296,172

Total vulnerabilities in the database

CVE-2024-0048

In Session of AccountManagerService.java, there is a possible method to retain foreground service privileges due to incorrect handling of null responses. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • Published: Mar 11, 2024
  • Updated: May 4, 2025
  • CVE: CVE-2024-0048
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.8
  • AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

No CWE or OWASP classifications available.

Software From Fixed in
google / android 12.0 12.0.x
google / android 12.1 12.1.x
google / android 13.0 13.0.x
google / android 14.0 14.0.x