Home > Vulnerability Database > CVE-2024-0026

Mend.io Vulnerability Database

CVE-2024-0026

Date: May 7, 2024

In multiple functions of SnoozeHelper.java, there is a possible persistent denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

Language: Java

Severity Score

5.5

Related Resources (4)

Url: https://android.googlesource.com/platform/frameworks/base/+/a8fb9fe93efdebc4145e00934f42c91742f328de

Url: https://nvd.nist.gov/vuln/detail/CVE-2024-0026

Url: https://source.android.com/security/bulletin/2024-04-01

Url: https://www.mend.io/vulnerability-database/CVE-2024-0026

Severity Score

5.5

Weakness Type (CWE)

Uncontrolled Resource Consumption

CWE-400

Allocation of Resources Without Limits or Throttling

CWE-770

CVSS v3.1

Base Score:	5.5
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2024-0026

Date: May 7, 2024

Language: Java

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?