Android Pixel Information Disclosure Vulnerability

Added April 4, 2024 • Due April 25, 2024 • CVE-2024-29745

Overdue Android / Pixel CWE-908

Description

Android Pixel contains an information disclosure vulnerability in the fastboot firmware used to support unlocking, flashing, and locking affected devices.

Required Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

References

https://source.android.com/docs/security/bulletin/pixel/2024-04-01
https://nvd.nist.gov/vuln/detail/CVE-2024-29745

Additional Information

Catalog Version: 2025.01.24
Catalog Released: Jan. 24, 2025
Days Until Due: 0 days
Last Updated: 9 months, 3 weeks ago