ASB-A-233605527
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-233605527.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-233605527
- Aliases
-
- A-233605527
- CVE-2024-43765
- Published
- 2025-01-01T00:00:00Z
- Modified
- 2025-01-13T21:12:08.793248Z
- Summary
- [none]
- Details
-
In multiple locations, there is a possible way to obtain access to a folder due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.
- References
Affected packages
Android / platform/packages/apps/DocumentsUI
Package
Ecosystem specific
{
"vanir_signatures": [
{
"match_only_versions": [
"15-next"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"271386596174838460193387806319468664293",
"246810172530391874320035258365755324038",
"234733233448374129766506202653716240446",
"304319747724297934888211609965756361563",
"301521369216643593970466158097590294188",
"84717479905374598172268611885049970860",
"295415119472706017610704514205668575047",
"260913852173745355656013809836594692834"
]
},
"id": "ASB-A-233605527-7bc0b080",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/f19514065f9807f579d3cbb45feee96184f36411",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/picker/ConfirmFragment.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"15-next"
],
"digest": {
"length": 1314.0,
"function_hash": "99751798087559639081598668288973230162"
},
"id": "ASB-A-233605527-7de0e05e",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/f19514065f9807f579d3cbb45feee96184f36411",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/picker/ConfirmFragment.java",
"function": "onCreateDialog"
},
"signature_type": "Function"
},
{
"digest": {
"length": 4243.0,
"function_hash": "169336749586218159473139282774134854889"
},
"id": "ASB-A-233605527-b2cb59af",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/f19514065f9807f579d3cbb45feee96184f36411",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/BaseActivity.java",
"function": "onCreate"
},
"signature_type": "Function"
},
{
"match_only_versions": [
"15-next"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"139897962216699736742181233425162167032",
"220590923285174547950214650603364643732",
"77262789827853445517462766554704932148"
]
},
"id": "ASB-A-233605527-bd84f76c",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/f19514065f9807f579d3cbb45feee96184f36411",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/BaseActivity.java"
},
"signature_type": "Line"
}
],
"fixes": [
"https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/f19514065f9807f579d3cbb45feee96184f36411"
],
"spl": "2025-01-01",
"severity": "High",
"types": [
"EoP"
]
}
Android / platform/packages/apps/DocumentsUI
Package
Ecosystem specific
{
"vanir_signatures": [
{
"match_only_versions": [
"12"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"276381530802206527641111603323052654265",
"7995517934657804647775531674347883746",
"251527085332140698884099667620247418761",
"170028048836128503969773428803977617087",
"301521369216643593970466158097590294188",
"84717479905374598172268611885049970860",
"295415119472706017610704514205668575047",
"260913852173745355656013809836594692834"
]
},
"id": "ASB-A-233605527-0a4657b4",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/2de5d72a3cd83be5adafd00bfef50850784c21c9",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/picker/ConfirmFragment.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"12"
],
"digest": {
"length": 1314.0,
"function_hash": "99751798087559639081598668288973230162"
},
"id": "ASB-A-233605527-615cedc0",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/2de5d72a3cd83be5adafd00bfef50850784c21c9",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/picker/ConfirmFragment.java",
"function": "onCreateDialog"
},
"signature_type": "Function"
},
{
"match_only_versions": [
"12"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"139897962216699736742181233425162167032",
"220590923285174547950214650603364643732",
"77262789827853445517462766554704932148"
]
},
"id": "ASB-A-233605527-819591f4",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/2de5d72a3cd83be5adafd00bfef50850784c21c9",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/BaseActivity.java"
},
"signature_type": "Line"
},
{
"digest": {
"length": 4127.0,
"function_hash": "298408937990283233481199121595131026300"
},
"id": "ASB-A-233605527-ea35dca7",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/2de5d72a3cd83be5adafd00bfef50850784c21c9",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/BaseActivity.java",
"function": "onCreate"
},
"signature_type": "Function"
}
],
"fixes": [
"https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/2de5d72a3cd83be5adafd00bfef50850784c21c9"
],
"spl": "2025-01-01",
"severity": "High",
"types": [
"EoP"
]
}
Android / platform/packages/apps/DocumentsUI
Package
Ecosystem specific
{
"vanir_signatures": [
{
"match_only_versions": [
"12L"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"139897962216699736742181233425162167032",
"220590923285174547950214650603364643732",
"77262789827853445517462766554704932148"
]
},
"id": "ASB-A-233605527-1a673a0e",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/14c45fc9056f9841e51533fda4805e8ee5cdce51",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/BaseActivity.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"12L"
],
"digest": {
"length": 1314.0,
"function_hash": "99751798087559639081598668288973230162"
},
"id": "ASB-A-233605527-2e65bd43",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/14c45fc9056f9841e51533fda4805e8ee5cdce51",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/picker/ConfirmFragment.java",
"function": "onCreateDialog"
},
"signature_type": "Function"
},
{
"digest": {
"length": 4127.0,
"function_hash": "298408937990283233481199121595131026300"
},
"id": "ASB-A-233605527-5d281394",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/14c45fc9056f9841e51533fda4805e8ee5cdce51",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/BaseActivity.java",
"function": "onCreate"
},
"signature_type": "Function"
},
{
"match_only_versions": [
"12L"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"276381530802206527641111603323052654265",
"7995517934657804647775531674347883746",
"251527085332140698884099667620247418761",
"170028048836128503969773428803977617087",
"301521369216643593970466158097590294188",
"84717479905374598172268611885049970860",
"295415119472706017610704514205668575047",
"260913852173745355656013809836594692834"
]
},
"id": "ASB-A-233605527-add44acb",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/14c45fc9056f9841e51533fda4805e8ee5cdce51",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/picker/ConfirmFragment.java"
},
"signature_type": "Line"
}
],
"fixes": [
"https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/14c45fc9056f9841e51533fda4805e8ee5cdce51"
],
"spl": "2025-01-01",
"severity": "High",
"types": [
"EoP"
]
}
Android / platform/packages/apps/DocumentsUI
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"140832134287710410728917235462454892895",
"69661308799903031711319181534987625419",
"36140893569871441780965343496012081278",
"212613829433508033093884891075251292156",
"139897962216699736742181233425162167032",
"220590923285174547950214650603364643732",
"77262789827853445517462766554704932148"
]
},
"id": "ASB-A-233605527-195e02a4",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/0f5f4b53ad43b891cc04ef8bd059e28fba1cc44c",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/BaseActivity.java"
},
"signature_type": "Line"
},
{
"digest": {
"length": 4028.0,
"function_hash": "7399082904591817902057891077307787146"
},
"id": "ASB-A-233605527-38961b6b",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/0f5f4b53ad43b891cc04ef8bd059e28fba1cc44c",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/BaseActivity.java",
"function": "onCreate"
},
"signature_type": "Function"
},
{
"match_only_versions": [
"13"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"271386596174838460193387806319468664293",
"246810172530391874320035258365755324038",
"234733233448374129766506202653716240446",
"304319747724297934888211609965756361563",
"301521369216643593970466158097590294188",
"84717479905374598172268611885049970860",
"295415119472706017610704514205668575047",
"260913852173745355656013809836594692834"
]
},
"id": "ASB-A-233605527-4d7a7b44",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/0f5f4b53ad43b891cc04ef8bd059e28fba1cc44c",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/picker/ConfirmFragment.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"13"
],
"digest": {
"length": 1314.0,
"function_hash": "99751798087559639081598668288973230162"
},
"id": "ASB-A-233605527-bb4d4a70",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/0f5f4b53ad43b891cc04ef8bd059e28fba1cc44c",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/picker/ConfirmFragment.java",
"function": "onCreateDialog"
},
"signature_type": "Function"
}
],
"fixes": [
"https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/0f5f4b53ad43b891cc04ef8bd059e28fba1cc44c"
],
"spl": "2025-01-01",
"severity": "High",
"types": [
"EoP"
]
}
Android / platform/packages/apps/DocumentsUI
Package
Ecosystem specific
{
"vanir_signatures": [
{
"match_only_versions": [
"14"
],
"digest": {
"length": 1314.0,
"function_hash": "99751798087559639081598668288973230162"
},
"id": "ASB-A-233605527-0334497b",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/0f5f4b53ad43b891cc04ef8bd059e28fba1cc44c",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/picker/ConfirmFragment.java",
"function": "onCreateDialog"
},
"signature_type": "Function"
},
{
"digest": {
"length": 4028.0,
"function_hash": "7399082904591817902057891077307787146"
},
"id": "ASB-A-233605527-4d424a17",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/0f5f4b53ad43b891cc04ef8bd059e28fba1cc44c",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/BaseActivity.java",
"function": "onCreate"
},
"signature_type": "Function"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"140832134287710410728917235462454892895",
"69661308799903031711319181534987625419",
"36140893569871441780965343496012081278",
"212613829433508033093884891075251292156",
"139897962216699736742181233425162167032",
"220590923285174547950214650603364643732",
"77262789827853445517462766554704932148"
]
},
"id": "ASB-A-233605527-771a40d2",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/0f5f4b53ad43b891cc04ef8bd059e28fba1cc44c",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/BaseActivity.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"14"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"271386596174838460193387806319468664293",
"246810172530391874320035258365755324038",
"234733233448374129766506202653716240446",
"304319747724297934888211609965756361563",
"301521369216643593970466158097590294188",
"84717479905374598172268611885049970860",
"295415119472706017610704514205668575047",
"260913852173745355656013809836594692834"
]
},
"id": "ASB-A-233605527-a9cfcd31",
"source": "https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/0f5f4b53ad43b891cc04ef8bd059e28fba1cc44c",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "src/com/android/documentsui/picker/ConfirmFragment.java"
},
"signature_type": "Line"
}
],
"fixes": [
"https://android.googlesource.com/platform/packages/apps/DocumentsUI/+/0f5f4b53ad43b891cc04ef8bd059e28fba1cc44c"
],
"spl": "2025-01-01",
"severity": "High",
"types": [
"EoP"
]
}