Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-4ffy-5pxq-5ubj

Summary In shouldRestrictOverlayActivities of UsbProfileGroupSettingsManager.java, there is a possible escape from SUW due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.

Aliases

alias	CVE-2024-34739

Fixed_packages

Affected_packages

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-34739

reference_id

reference_type

scores

value	0.00555
scoring_system	epss
scoring_elements	0.68589
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-34739

reference_url

https://source.android.com/security/bulletin/2025-05-01

reference_id

2025-05-01

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-11T14:08:01Z/

url

https://source.android.com/security/bulletin/2025-05-01

reference_url

https://android.googlesource.com/platform/frameworks/base/+/50e1f8f36e32928d10e72324c05a203a6db9f7fb

reference_id

50e1f8f36e32928d10e72324c05a203a6db9f7fb

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-09-11T14:08:01Z/

url

https://android.googlesource.com/platform/frameworks/base/+/50e1f8f36e32928d10e72324c05a203a6db9f7fb

Weaknesses

Exploits

Severity_range_score 7.8 - 7.8

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4ffy-5pxq-5ubj

Vulnerability Instance