ASB-A-299931761

See a problem?
Import Source
https://storage.googleapis.com/android-osv/ASB-A-299931761.json
JSON Data
https://api.osv.dev/v1/vulns/ASB-A-299931761
Aliases
  • CVE-2024-23704
Published
2024-04-01T00:00:00Z
Modified
2024-07-26T15:05:09Z
Summary
Bypass DISALLOW_ADD_WIFI_CONFIG to connect to an untrusted Wi-Fi network by WifiDialogActivity
Details

In onCreate of WifiDialogActivity.java, there is a possible way to bypass the DISALLOWADDWIFI_CONFIG restriction due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android / platform/packages/apps/Settings

Package

Name
platform/packages/apps/Settings

Affected ranges

Type
ECOSYSTEM
Events
Introduced
14-next:0
Fixed
14-next:2024-04-01

Affected versions

Other

14-next

Ecosystem specific 

{
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/51fa3d798ad0397122bbb2143bc24efe1a705be9"
    ],
    "spl": "2024-04-01",
    "types": [
        "EoP"
    ],
    "severity": "High"
}

Android / platform/packages/apps/Settings

Package

Name
platform/packages/apps/Settings

Affected ranges

Type
ECOSYSTEM
Events
Introduced
13:0
Fixed
13:2024-04-01

Affected versions

Other

13

Ecosystem specific 

{
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/aabb15de74d4d24a81ed1f5b7789fe0a8407b256"
    ],
    "spl": "2024-04-01",
    "types": [
        "EoP"
    ],
    "severity": "High"
}

Android / platform/packages/apps/Settings

Package

Name
platform/packages/apps/Settings

Affected ranges

Type
ECOSYSTEM
Events
Introduced
14:0
Fixed
14:2024-04-01

Affected versions

Other

14

Ecosystem specific 

{
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/a0409e582c30d2d6ff347eefd173ae169963df75"
    ],
    "spl": "2024-04-01",
    "types": [
        "EoP"
    ],
    "severity": "High"
}