ASB-A-298635078
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-298635078.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-298635078
- Aliases
-
- A-298635078
- CVE-2024-0022
- Published
- 2024-04-01T00:00:00Z
- Modified
- 2025-10-23T15:57:26.264597Z
- Summary
- [none]
- Details
-
In multiple functions of CompanionDeviceManagerService.java, there is a possible launch NotificationAccessConfirmationActivity of another user profile due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / platform/frameworks/base
Package
Ecosystem specific
{
"types": [
"ID"
],
"spl": "2024-04-01",
"severity": "High",
"vanir_signatures": [
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/38e1e9fb0357a3d0af5551cac83ad9b0b1fd0be2",
"target": {
"file": "services/companion/java/com/android/server/companion/CompanionDeviceManagerService.java"
},
"id": "ASB-A-298635078-6657176a",
"deprecated": false,
"digest": {
"line_hashes": [
"235055368570902509845368135688908912691",
"46914772837610932699393074704245498036",
"143965187811282397119853525869334576475",
"207406646097850335216169154541288558099",
"1541481414671566929650348865673721681",
"198439889011393407708305208935883938336",
"68434358367093740788027285675272473764",
"36383238236546658061563661091805463698",
"249300913198780888612584497119342926850",
"258178459221036030024073464284086474097",
"118788571807013244513436783750616737032",
"213005690081425911274194467743767865198",
"201408134120087323544393823627838966732"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/38e1e9fb0357a3d0af5551cac83ad9b0b1fd0be2",
"target": {
"function": "checkCanCallNotificationApi",
"file": "services/companion/java/com/android/server/companion/CompanionDeviceManagerService.java"
},
"id": "ASB-A-298635078-878367c8",
"deprecated": false,
"digest": {
"function_hash": "173029907314831969588352356730720748041",
"length": 324.0
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/38e1e9fb0357a3d0af5551cac83ad9b0b1fd0be2",
"target": {
"function": "requestNotificationAccess",
"file": "services/companion/java/com/android/server/companion/CompanionDeviceManagerService.java"
},
"id": "ASB-A-298635078-af360e4f",
"deprecated": false,
"digest": {
"function_hash": "82965898534591532984086544620584104426",
"length": 584.0
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/38e1e9fb0357a3d0af5551cac83ad9b0b1fd0be2",
"target": {
"function": "hasNotificationAccess",
"file": "services/companion/java/com/android/server/companion/CompanionDeviceManagerService.java"
},
"id": "ASB-A-298635078-eb43ac84",
"deprecated": false,
"digest": {
"function_hash": "43095038762511238101975353702976297412",
"length": 183.0
},
"signature_type": "Function",
"signature_version": "v1"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/38e1e9fb0357a3d0af5551cac83ad9b0b1fd0be2"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"types": [
"ID"
],
"spl": "2024-04-01",
"severity": "High",
"vanir_signatures": [
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/15eec4872d7b0fdfead3a8f5b4a1bb4d9ad82a0c",
"target": {
"function": "checkCanCallNotificationApi",
"file": "services/companion/java/com/android/server/companion/CompanionDeviceManagerService.java"
},
"id": "ASB-A-298635078-09511614",
"deprecated": false,
"digest": {
"function_hash": "173029907314831969588352356730720748041",
"length": 324.0
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/15eec4872d7b0fdfead3a8f5b4a1bb4d9ad82a0c",
"target": {
"function": "requestNotificationAccess",
"file": "services/companion/java/com/android/server/companion/CompanionDeviceManagerService.java"
},
"id": "ASB-A-298635078-5870c43e",
"deprecated": false,
"digest": {
"function_hash": "82965898534591532984086544620584104426",
"length": 584.0
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/15eec4872d7b0fdfead3a8f5b4a1bb4d9ad82a0c",
"target": {
"function": "hasNotificationAccess",
"file": "services/companion/java/com/android/server/companion/CompanionDeviceManagerService.java"
},
"id": "ASB-A-298635078-bd83d046",
"deprecated": false,
"digest": {
"function_hash": "43095038762511238101975353702976297412",
"length": 183.0
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/15eec4872d7b0fdfead3a8f5b4a1bb4d9ad82a0c",
"target": {
"file": "services/companion/java/com/android/server/companion/CompanionDeviceManagerService.java"
},
"id": "ASB-A-298635078-fb811839",
"deprecated": false,
"digest": {
"line_hashes": [
"235055368570902509845368135688908912691",
"46914772837610932699393074704245498036",
"143965187811282397119853525869334576475",
"207406646097850335216169154541288558099",
"1541481414671566929650348865673721681",
"198439889011393407708305208935883938336",
"68434358367093740788027285675272473764",
"36383238236546658061563661091805463698",
"114977226342569734230072593037231426736",
"68725759236570820763792637467364251579",
"118788571807013244513436783750616737032",
"213005690081425911274194467743767865198",
"201408134120087323544393823627838966732"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/15eec4872d7b0fdfead3a8f5b4a1bb4d9ad82a0c"
]
}
Android / platform/frameworks/base
Package
Ecosystem specific
{
"types": [
"ID"
],
"spl": "2024-04-01",
"severity": "High",
"vanir_signatures": [
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/12bb4ed9ab46d3e42326ef1c5e7b90aae80a9bfc",
"target": {
"function": "requestNotificationAccess",
"file": "services/companion/java/com/android/server/companion/CompanionDeviceManagerService.java"
},
"id": "ASB-A-298635078-177c6cce",
"deprecated": false,
"digest": {
"function_hash": "82965898534591532984086544620584104426",
"length": 584.0
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/12bb4ed9ab46d3e42326ef1c5e7b90aae80a9bfc",
"target": {
"file": "services/companion/java/com/android/server/companion/CompanionDeviceManagerService.java"
},
"id": "ASB-A-298635078-5ce7c935",
"deprecated": false,
"digest": {
"line_hashes": [
"235055368570902509845368135688908912691",
"46914772837610932699393074704245498036",
"143965187811282397119853525869334576475",
"207406646097850335216169154541288558099",
"1541481414671566929650348865673721681",
"198439889011393407708305208935883938336",
"68434358367093740788027285675272473764",
"36383238236546658061563661091805463698",
"249300913198780888612584497119342926850",
"258178459221036030024073464284086474097",
"118788571807013244513436783750616737032",
"213005690081425911274194467743767865198",
"201408134120087323544393823627838966732"
],
"threshold": 0.9
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/12bb4ed9ab46d3e42326ef1c5e7b90aae80a9bfc",
"target": {
"function": "hasNotificationAccess",
"file": "services/companion/java/com/android/server/companion/CompanionDeviceManagerService.java"
},
"id": "ASB-A-298635078-f6f10872",
"deprecated": false,
"digest": {
"function_hash": "43095038762511238101975353702976297412",
"length": 183.0
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"source": "https://android.googlesource.com/platform/frameworks/base/+/12bb4ed9ab46d3e42326ef1c5e7b90aae80a9bfc",
"target": {
"function": "checkCanCallNotificationApi",
"file": "services/companion/java/com/android/server/companion/CompanionDeviceManagerService.java"
},
"id": "ASB-A-298635078-fa093a43",
"deprecated": false,
"digest": {
"function_hash": "173029907314831969588352356730720748041",
"length": 324.0
},
"signature_type": "Function",
"signature_version": "v1"
}
],
"fixes": [
"https://android.googlesource.com/platform/frameworks/base/+/12bb4ed9ab46d3e42326ef1c5e7b90aae80a9bfc"
]
}