CVE-2024-29751

In asn1_ec_pkey_parse_p384 of asn1_common.c, there is a possible OOB Read due to a missing null check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVSS

No CVSS.

References

Link	Resource
https://source.android.com/security/bulletin/pixel/2024-04-01	Vendor Advisory
https://source.android.com/security/bulletin/pixel/2024-04-01	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

History

17 Jun 2025, 20:48

Type	Values Removed	Values Added
CPE		cpe:2.3:o:google:android:-:::::::*
First Time		Google android Google
References	~~() https://source.android.com/security/bulletin/pixel/2024-04-01 -~~	() https://source.android.com/security/bulletin/pixel/2024-04-01 - Vendor Advisory

05 Apr 2024, 20:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-04-05 20:15

Updated : 2025-06-17 20:48

NVD link : CVE-2024-29751

Mitre link : CVE-2024-29751

JSON object : View

Products Affected

google

android

CWE

No CWE.

JSON object

Attach tags to CVE-2024-29751

Attach tags to `CVE-2024-29751`