ASB-A-355411348
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-355411348.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-355411348
- Aliases
-
- A-355411348
- CVE-2024-49720
- Published
- 2025-04-01T00:00:00Z
- Modified
- 2025-04-08T15:57:29Z
- Summary
- [none]
- Details
-
In multiple functions of Permissions.java, there is a possible way to override the state of the user's location permissions due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- References
Affected packages
Android / platform/packages/modules/Permission
Package
Ecosystem specific
{
"vanir_signatures": [
{
"digest": {
"length": 479.0,
"function_hash": "76255136349812465480493960808170142056"
},
"id": "ASB-A-355411348-19171c90",
"source": "https://android.googlesource.com/platform/packages/modules/Permission/+/7e1f7097f4a6895358bf1472e6d26c5198d00c11",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "PermissionController/role-controller/java/com/android/role/controller/model/Permissions.java",
"function": "isPermissionFixedAsUser"
},
"signature_type": "Function"
},
{
"digest": {
"length": 1623.0,
"function_hash": "141619514520788998866018257770516533168"
},
"id": "ASB-A-355411348-d3235adf",
"source": "https://android.googlesource.com/platform/packages/modules/Permission/+/7e1f7097f4a6895358bf1472e6d26c5198d00c11",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "PermissionController/role-controller/java/com/android/role/controller/model/Permissions.java",
"function": "grantSingleAsUser"
},
"signature_type": "Function"
},
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"276735937301336299084427692564300228595",
"322989708559293431295789412320417604874",
"213152137624597320215320511324637273908",
"25564878861477671112121177766071587689",
"262738313968617711989477123477272251866",
"230377411451346628928423402557176974417",
"29739341363408189168750249940983237131",
"61610753031451740195870485119474286831"
]
},
"id": "ASB-A-355411348-ff7f9b38",
"source": "https://android.googlesource.com/platform/packages/modules/Permission/+/7e1f7097f4a6895358bf1472e6d26c5198d00c11",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "PermissionController/role-controller/java/com/android/role/controller/model/Permissions.java"
},
"signature_type": "Line"
}
],
"fixes": [
"https://android.googlesource.com/platform/packages/modules/Permission/+/7e1f7097f4a6895358bf1472e6d26c5198d00c11"
],
"spl": "2025-04-01",
"severity": "High",
"types": [
"EoP"
]
}
Android / platform/packages/modules/Permission
Package
Android / platform/packages/modules/Permission
Package
Ecosystem specific
{
"vanir_signatures": [
{
"match_only_versions": [
"13"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"276735937301336299084427692564300228595",
"322989708559293431295789412320417604874",
"213152137624597320215320511324637273908",
"71428023426661599606021655487902426771",
"262738313968617711989477123477272251866",
"230377411451346628928423402557176974417",
"29739341363408189168750249940983237131",
"61610753031451740195870485119474286831"
]
},
"id": "ASB-A-355411348-00736bd0",
"source": "https://android.googlesource.com/platform/packages/modules/Permission/+/71e09e5ad12d02b3129c7a5ce16f6de734fdd0da",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "PermissionController/src/com/android/permissioncontroller/role/model/Permissions.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"13"
],
"digest": {
"length": 1551.0,
"function_hash": "326735615273034153298670880778922269486"
},
"id": "ASB-A-355411348-3f8e0626",
"source": "https://android.googlesource.com/platform/packages/modules/Permission/+/71e09e5ad12d02b3129c7a5ce16f6de734fdd0da",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "PermissionController/src/com/android/permissioncontroller/role/model/Permissions.java",
"function": "grantSingle"
},
"signature_type": "Function"
},
{
"match_only_versions": [
"13"
],
"digest": {
"length": 447.0,
"function_hash": "157246517829887779856954165638462687008"
},
"id": "ASB-A-355411348-668759fa",
"source": "https://android.googlesource.com/platform/packages/modules/Permission/+/71e09e5ad12d02b3129c7a5ce16f6de734fdd0da",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "PermissionController/src/com/android/permissioncontroller/role/model/Permissions.java",
"function": "isPermissionFixed"
},
"signature_type": "Function"
}
],
"fixes": [
"https://android.googlesource.com/platform/packages/modules/Permission/+/71e09e5ad12d02b3129c7a5ce16f6de734fdd0da"
],
"spl": "2025-04-01",
"severity": "High",
"types": [
"EoP"
]
}
Android / platform/packages/modules/Permission
Package
Ecosystem specific
{
"vanir_signatures": [
{
"match_only_versions": [
"14"
],
"digest": {
"length": 1551.0,
"function_hash": "326735615273034153298670880778922269486"
},
"id": "ASB-A-355411348-36671567",
"source": "https://android.googlesource.com/platform/packages/modules/Permission/+/04e3f30193b80d0fdb7f68cbe0161dc985aa7557",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "PermissionController/role-controller/java/com/android/role/controller/model/Permissions.java",
"function": "grantSingle"
},
"signature_type": "Function"
},
{
"match_only_versions": [
"14"
],
"digest": {
"threshold": 0.9,
"line_hashes": [
"276735937301336299084427692564300228595",
"322989708559293431295789412320417604874",
"213152137624597320215320511324637273908",
"71428023426661599606021655487902426771",
"262738313968617711989477123477272251866",
"230377411451346628928423402557176974417",
"29739341363408189168750249940983237131",
"61610753031451740195870485119474286831"
]
},
"id": "ASB-A-355411348-d5003a82",
"source": "https://android.googlesource.com/platform/packages/modules/Permission/+/04e3f30193b80d0fdb7f68cbe0161dc985aa7557",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "PermissionController/role-controller/java/com/android/role/controller/model/Permissions.java"
},
"signature_type": "Line"
},
{
"match_only_versions": [
"14"
],
"digest": {
"length": 447.0,
"function_hash": "157246517829887779856954165638462687008"
},
"id": "ASB-A-355411348-e9cc9c4d",
"source": "https://android.googlesource.com/platform/packages/modules/Permission/+/04e3f30193b80d0fdb7f68cbe0161dc985aa7557",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "PermissionController/role-controller/java/com/android/role/controller/model/Permissions.java",
"function": "isPermissionFixed"
},
"signature_type": "Function"
}
],
"fixes": [
"https://android.googlesource.com/platform/packages/modules/Permission/+/04e3f30193b80d0fdb7f68cbe0161dc985aa7557"
],
"spl": "2025-04-01",
"severity": "High",
"types": [
"EoP"
]
}