CISA Known Exploited Vulnerability (KEV)
Android Pixel Information Disclosure Vulnerability
April 4, 2024
April 25, 2024
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Description
there is a possible Information Disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Weakness Enumeration
CWE-ID | CWE Name |
---|---|
CWE-908 |
Use of Uninitialized Resource |