CVE-2024-49714 | Google Android 13/14 avrc_opt.cc avrc_vendor_msg out-of-bounds write (EUVD-2024-54966 / WID-SEC-2025-1944)
A vulnerability described as critical has been identified in Google Android 13/14. This vulnerability affects the function avrc_vendor_msg of the file avrc_opt.cc. Executing manipulation can lead to out-of-bounds write.
This vulnerability is registered as CVE-2024-49714. The attack requires access to the local network. No exploit is available.
Applying a patch is advised to resolve this issue.