VDB
ASB-A-253642087
ASB-A-253642087
PUBLISHED
CVSS 8.600000381469727 HIGH
In ieee802_11_parse_elems_crc of util.c, there is a possible use after free due to a logic error in the code. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.
Risk Scores
CVSS 4.0
8.600000381469727
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Android | :linux_kernel: | :0, Kernel, * |
Timeline
- Jan 1, 2023 CVE Published
- May 15, 2026 CVE Updated
References
- https://source.android.com/security/bulletin/2023-01-01 advisory
- https://android.googlesource.com/kernel/common/+/9a8ef2030510a patch
- https://android.googlesource.com/kernel/common/+/0a861bd25dad5 patch
- https://android.googlesource.com/kernel/common/+/9e99ca59ed397 patch
- https://android.googlesource.com/kernel/common/+/bfe29873454f3 patch
- https://android.googlesource.com/kernel/common/+/0a8ee682e4f99 patch
- https://android.googlesource.com/kernel/common/+/fff244e9171b2 patch
- https://android.googlesource.com/kernel/common/+/93a3a32554079 patch
- https://android.googlesource.com/kernel/common/+/d15bb1f6dabe1 patch
- https://android.googlesource.com/kernel/common/+/864f2d3482f4b patch
- https://android.googlesource.com/kernel/common/+/21df3a583e8e0 patch
- https://android.googlesource.com/kernel/common/+/630060f117567 patch
- https://android.googlesource.com/kernel/common/+/fee48f3bdd751 patch
- https://android.googlesource.com/kernel/common/+/7d998f6b7365d patch
- https://android.googlesource.com/kernel/common/+/de124365a7d2d patch