CVE-2024-27350

Published: Feb 25, 2024

Modified: Nov 12, 2024

PUBLISHED

Description

Amazon Fire OS 7 before 7.6.6.9 and 8 before 8.1.0.3 allows Fire TV applications to establish local ADB (Android Debug Bridge) connections. NOTE: some third parties dispute whether this has security relevance, because an ADB connection is only possible after the (non-default) ADB Debugging option is enabled, and after the initiator of that specific connection attempt has been approved via a full-screen prompt.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.aftvnews.com/amazon-blocks-long-running-fire-tv-capability-breaking-popular-apps-with-no-warning-and-giving-developers-the-runaround/

https://news.ycombinator.com/item?id=39496861

https://developer.amazon.com/docs/fire-tv/fire-os-overview.html

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-27350

Description

Affected Products

References