CVE-2024-46941
BaseFortify
Publication date: 2025-06-06
Last updated on: 2025-06-06
Assigner: Vivo Mobile Communication Co., Ltd.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-281 | The product does not preserve permissions or incorrectly preserves permissions when copying, restoring, or sharing objects, which can cause them to have less restrictive permissions than intended. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves the SystemUI component having an incorrect protection setting, which allows unauthorized access to specific information within the system.
How can this vulnerability impact me? :
The vulnerability can lead to unauthorized access to certain information through the SystemUI component, potentially exposing sensitive data or system details to unauthorized users.
What immediate steps should I take to mitigate this vulnerability?
To mitigate the vulnerability in SystemUI caused by incorrect component protection settings, immediate steps are not explicitly detailed in the provided resources. However, based on similar vulnerability handling practices, it is advisable to check for and apply any available updates or patches from the vendor that address this issue. Since no direct mitigation steps or temporary fixes are provided, monitoring for official updates from vivo and applying them promptly is recommended.