Security Advisory

CVE-2024-49714

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-04 18:33:44
Last updated 2026-02-26 17:49:27
Assigner google_android
State PUBLISHED

Description

In avrc_vendor_msg of avrc_opt.cc, there is a possible out of bounds write due to a heap buffer overflow. This could lead to paired device escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.