Gallery App Permission Bypass Flaw
CVE-2024-51527 Published on November 5, 2024

Permission control vulnerability in the Gallery app Impact: Successful exploitation of this vulnerability may affect service confidentiality.

NVD

Vulnerability Analysis

CVE-2024-51527 can be exploited with local system access, and does not require authorization privileges or user interaction. This vulnerability is consided to have a high level of attack complexity. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality, with no impact on integrity and availability.

Attack Vector:
LOCAL
Attack Complexity:
HIGH
Privileges Required:
NONE
User Interaction:
NONE
Scope:
UNCHANGED
Confidentiality Impact:
HIGH
Integrity Impact:
NONE
Availability Impact:
NONE

Weakness Type

Permissions, Privileges, and Access Controls

Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.


Products Associated with CVE-2024-51527

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2024-51527 are published in these products:

Huawei Emui
 
Huawei Harmonyos
 
Samsung Gallery
 

Affected Versions

Huawei HarmonyOS: Huawei EMUI:

Exploit Probability

EPSS
0.06%
Percentile
18.88%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.