ASB-A-363248394
See a problem?- Import Source
- https://storage.googleapis.com/android-osv/ASB-A-363248394.json
- JSON Data
- https://api.osv.dev/v1/vulns/ASB-A-363248394
- Aliases
-
- A-363248394
- CVE-2024-49742
- Published
- 2025-01-01T00:00:00Z
- Modified
- 2025-12-30T16:22:21.322517Z
- Summary
- [none]
- Details
-
In onCreate of NotificationAccessConfirmationActivity.java , there is a possible way to hide an app with notification access in Settings due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
- References
Affected packages
Android
platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/7ae59a42eb13f643d842525208619037c074371a"
],
"vanir_signatures": [
{
"digest": {
"function_hash": "45178275718944758447062834043860974696",
"length": 22.0
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-36eab0ab",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java",
"function": "onBackPressed"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/7ae59a42eb13f643d842525208619037c074371a"
},
{
"digest": {
"function_hash": "158058501711243768092335401639404740954",
"length": 534.0
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-49871e68",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java",
"function": "onAllow"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/7ae59a42eb13f643d842525208619037c074371a"
},
{
"digest": {
"line_hashes": [
"57727154343770777405582517321238337154",
"240299413138754236445741587685939021564",
"56485816086395040808892777746068628670",
"141220926358305337894019062638802357885",
"227002494228847845254187301756915597624",
"330638076505241857648771747028368404776",
"99092410661102412195360826873398395171",
"14103810232702175623170287818503365343",
"317202621517561104950015159086261898572",
"191479634492722483872519470832523952093",
"197714015620490234314031268762055085156",
"119365618824003008288156991754343644937",
"123749577098740968685961213750306873985",
"177362007595037873971564041011192325357",
"53591544466251393366937668994109452227",
"305088722976120007750667000500426231436",
"306209512473516296155736136729834633101",
"118550500567950120178115643643381551211",
"302397935007188022697211775042314056052",
"232950848787682393215759979238303333680",
"40005311771178354065038403669416926752",
"211775574209560010576260318010958178028",
"266881839522848279143316692961588307042",
"280167219989943914343817339763513038756",
"267211863654729794929081226421728462297",
"270694349273209714412497048716314078843",
"144025403237800394119601872020402640883",
"37501214243172625515734330041113614766",
"53958031742443912502115050690555681788",
"262103182444260585763988288681127480223",
"274554937747220808834387043439148808182",
"9870317711005571778903137631517401320",
"38503349405693615785621802973413453701",
"96913160311998657077363225236442605664",
"159311489985207720856506450665721091486",
"172494747311373234724771676784500986050",
"298619143740932187285643586510739257434",
"281331493451922174030551833738246710447"
],
"threshold": 0.9
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-6ebed7ad",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/7ae59a42eb13f643d842525208619037c074371a"
},
{
"digest": {
"function_hash": "263292827110599531548209042734242461098",
"length": 2095.0
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-cac91c5c",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java",
"function": "onCreate"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/7ae59a42eb13f643d842525208619037c074371a"
}
],
"severity": "High",
"spl": "2025-01-01",
"types": [
"EoP"
]
}platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/59cdc3e20ca4ac198b1c27e6a5372ececd155b16"
],
"vanir_signatures": [
{
"digest": {
"function_hash": "45178275718944758447062834043860974696",
"length": 22.0
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-256d3dac",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java",
"function": "onBackPressed"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/59cdc3e20ca4ac198b1c27e6a5372ececd155b16"
},
{
"digest": {
"line_hashes": [
"328114276595521853336613073004655899917",
"240299413138754236445741587685939021564",
"56485816086395040808892777746068628670",
"141220926358305337894019062638802357885",
"227002494228847845254187301756915597624",
"330638076505241857648771747028368404776",
"99092410661102412195360826873398395171",
"106690650067377600027213558808887643996",
"129862251475411717454851089808599565352",
"338911370750416462991039382607241916756",
"119365618824003008288156991754343644937",
"123749577098740968685961213750306873985",
"177362007595037873971564041011192325357",
"53591544466251393366937668994109452227",
"305088722976120007750667000500426231436",
"306209512473516296155736136729834633101",
"118550500567950120178115643643381551211",
"302397935007188022697211775042314056052",
"232950848787682393215759979238303333680",
"40005311771178354065038403669416926752",
"211775574209560010576260318010958178028",
"266881839522848279143316692961588307042",
"280167219989943914343817339763513038756",
"267211863654729794929081226421728462297",
"270694349273209714412497048716314078843",
"144025403237800394119601872020402640883",
"37501214243172625515734330041113614766",
"53958031742443912502115050690555681788",
"262103182444260585763988288681127480223",
"274554937747220808834387043439148808182",
"9870317711005571778903137631517401320",
"38503349405693615785621802973413453701",
"96913160311998657077363225236442605664",
"159311489985207720856506450665721091486",
"172494747311373234724771676784500986050",
"298619143740932187285643586510739257434",
"281331493451922174030551833738246710447"
],
"threshold": 0.9
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-954c2211",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/59cdc3e20ca4ac198b1c27e6a5372ececd155b16"
},
{
"digest": {
"function_hash": "158058501711243768092335401639404740954",
"length": 534.0
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-b2bb2adb",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java",
"function": "onAllow"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/59cdc3e20ca4ac198b1c27e6a5372ececd155b16"
},
{
"digest": {
"function_hash": "206317504436942739198941523319335007103",
"length": 1654.0
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-d604a1b1",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java",
"function": "onCreate"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/59cdc3e20ca4ac198b1c27e6a5372ececd155b16"
}
],
"severity": "High",
"spl": "2025-01-01",
"types": [
"EoP"
]
}platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/59cdc3e20ca4ac198b1c27e6a5372ececd155b16"
],
"vanir_signatures": [
{
"digest": {
"function_hash": "158058501711243768092335401639404740954",
"length": 534.0
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-59f47f2a",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java",
"function": "onAllow"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/59cdc3e20ca4ac198b1c27e6a5372ececd155b16"
},
{
"digest": {
"function_hash": "45178275718944758447062834043860974696",
"length": 22.0
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-b40caec6",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java",
"function": "onBackPressed"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/59cdc3e20ca4ac198b1c27e6a5372ececd155b16"
},
{
"digest": {
"line_hashes": [
"328114276595521853336613073004655899917",
"240299413138754236445741587685939021564",
"56485816086395040808892777746068628670",
"141220926358305337894019062638802357885",
"227002494228847845254187301756915597624",
"330638076505241857648771747028368404776",
"99092410661102412195360826873398395171",
"106690650067377600027213558808887643996",
"129862251475411717454851089808599565352",
"338911370750416462991039382607241916756",
"119365618824003008288156991754343644937",
"123749577098740968685961213750306873985",
"177362007595037873971564041011192325357",
"53591544466251393366937668994109452227",
"305088722976120007750667000500426231436",
"306209512473516296155736136729834633101",
"118550500567950120178115643643381551211",
"302397935007188022697211775042314056052",
"232950848787682393215759979238303333680",
"40005311771178354065038403669416926752",
"211775574209560010576260318010958178028",
"266881839522848279143316692961588307042",
"280167219989943914343817339763513038756",
"267211863654729794929081226421728462297",
"270694349273209714412497048716314078843",
"144025403237800394119601872020402640883",
"37501214243172625515734330041113614766",
"53958031742443912502115050690555681788",
"262103182444260585763988288681127480223",
"274554937747220808834387043439148808182",
"9870317711005571778903137631517401320",
"38503349405693615785621802973413453701",
"96913160311998657077363225236442605664",
"159311489985207720856506450665721091486",
"172494747311373234724771676784500986050",
"298619143740932187285643586510739257434",
"281331493451922174030551833738246710447"
],
"threshold": 0.9
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-cdb560e9",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/59cdc3e20ca4ac198b1c27e6a5372ececd155b16"
},
{
"digest": {
"function_hash": "206317504436942739198941523319335007103",
"length": 1654.0
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-edb4ed58",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java",
"function": "onCreate"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/59cdc3e20ca4ac198b1c27e6a5372ececd155b16"
}
],
"severity": "High",
"spl": "2025-01-01",
"types": [
"EoP"
]
}platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/d440f2ef05c20f81e1b1cad447cca427a25d77ec"
],
"vanir_signatures": [
{
"digest": {
"function_hash": "158058501711243768092335401639404740954",
"length": 534.0
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-611393ec",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java",
"function": "onAllow"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/d440f2ef05c20f81e1b1cad447cca427a25d77ec"
},
{
"digest": {
"line_hashes": [
"57727154343770777405582517321238337154",
"240299413138754236445741587685939021564",
"56485816086395040808892777746068628670",
"141220926358305337894019062638802357885",
"227002494228847845254187301756915597624",
"330638076505241857648771747028368404776",
"99092410661102412195360826873398395171",
"14103810232702175623170287818503365343",
"317202621517561104950015159086261898572",
"191479634492722483872519470832523952093",
"197714015620490234314031268762055085156",
"119365618824003008288156991754343644937",
"123749577098740968685961213750306873985",
"177362007595037873971564041011192325357",
"53591544466251393366937668994109452227",
"305088722976120007750667000500426231436",
"306209512473516296155736136729834633101",
"118550500567950120178115643643381551211",
"302397935007188022697211775042314056052",
"232950848787682393215759979238303333680",
"40005311771178354065038403669416926752",
"211775574209560010576260318010958178028",
"266881839522848279143316692961588307042",
"280167219989943914343817339763513038756",
"267211863654729794929081226421728462297",
"270694349273209714412497048716314078843",
"144025403237800394119601872020402640883",
"37501214243172625515734330041113614766",
"53958031742443912502115050690555681788",
"262103182444260585763988288681127480223",
"274554937747220808834387043439148808182",
"9870317711005571778903137631517401320",
"38503349405693615785621802973413453701",
"96913160311998657077363225236442605664",
"159311489985207720856506450665721091486",
"172494747311373234724771676784500986050",
"298619143740932187285643586510739257434",
"281331493451922174030551833738246710447"
],
"threshold": 0.9
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-80d66f1d",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/d440f2ef05c20f81e1b1cad447cca427a25d77ec"
},
{
"digest": {
"function_hash": "45178275718944758447062834043860974696",
"length": 22.0
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-b43614ca",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java",
"function": "onBackPressed"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/d440f2ef05c20f81e1b1cad447cca427a25d77ec"
},
{
"digest": {
"function_hash": "263292827110599531548209042734242461098",
"length": 2095.0
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-f2be0d1c",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java",
"function": "onCreate"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/d440f2ef05c20f81e1b1cad447cca427a25d77ec"
}
],
"severity": "High",
"spl": "2025-01-01",
"types": [
"EoP"
]
}platform/packages/apps/Settings
Package
- Name
- platform/packages/apps/Settings
Ecosystem specific
{
"fixes": [
"https://android.googlesource.com/platform/packages/apps/Settings/+/e4fe2f5b8134c007e29345ae11a64d37e8ef214a"
],
"vanir_signatures": [
{
"digest": {
"function_hash": "45178275718944758447062834043860974696",
"length": 22.0
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-571a3084",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java",
"function": "onBackPressed"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/e4fe2f5b8134c007e29345ae11a64d37e8ef214a"
},
{
"digest": {
"line_hashes": [
"57727154343770777405582517321238337154",
"240299413138754236445741587685939021564",
"56485816086395040808892777746068628670",
"141220926358305337894019062638802357885",
"227002494228847845254187301756915597624",
"330638076505241857648771747028368404776",
"99092410661102412195360826873398395171",
"14103810232702175623170287818503365343",
"317202621517561104950015159086261898572",
"191479634492722483872519470832523952093",
"197714015620490234314031268762055085156",
"119365618824003008288156991754343644937",
"123749577098740968685961213750306873985",
"177362007595037873971564041011192325357",
"53591544466251393366937668994109452227",
"305088722976120007750667000500426231436",
"306209512473516296155736136729834633101",
"118550500567950120178115643643381551211",
"302397935007188022697211775042314056052",
"232950848787682393215759979238303333680",
"40005311771178354065038403669416926752",
"211775574209560010576260318010958178028",
"266881839522848279143316692961588307042",
"280167219989943914343817339763513038756",
"267211863654729794929081226421728462297",
"270694349273209714412497048716314078843",
"144025403237800394119601872020402640883",
"37501214243172625515734330041113614766",
"53958031742443912502115050690555681788",
"262103182444260585763988288681127480223",
"274554937747220808834387043439148808182",
"9870317711005571778903137631517401320",
"38503349405693615785621802973413453701",
"96913160311998657077363225236442605664",
"159311489985207720856506450665721091486",
"172494747311373234724771676784500986050",
"298619143740932187285643586510739257434",
"281331493451922174030551833738246710447"
],
"threshold": 0.9
},
"signature_type": "Line",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-a76460f3",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/e4fe2f5b8134c007e29345ae11a64d37e8ef214a"
},
{
"digest": {
"function_hash": "158058501711243768092335401639404740954",
"length": 534.0
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-b215ab80",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java",
"function": "onAllow"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/e4fe2f5b8134c007e29345ae11a64d37e8ef214a"
},
{
"digest": {
"function_hash": "263292827110599531548209042734242461098",
"length": 2095.0
},
"signature_type": "Function",
"deprecated": false,
"signature_version": "v1",
"id": "ASB-A-363248394-b3993687",
"target": {
"file": "src/com/android/settings/notification/NotificationAccessConfirmationActivity.java",
"function": "onCreate"
},
"source": "https://android.googlesource.com/platform/packages/apps/Settings/+/e4fe2f5b8134c007e29345ae11a64d37e8ef214a"
}
],
"severity": "High",
"spl": "2025-01-01",
"types": [
"EoP"
]
}