VDB
ASB-A-257443051
ASB-A-257443051
PUBLISHED
CVSS 8.600000381469727 HIGH
In several functions of the Android Linux kernel, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Risk Scores
CVSS v4.0
8.600000381469727
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Android | :linux_kernel: | *, *, * |
Timeline
- Feb 1, 2023 CVE Published
- May 15, 2026 CVE Updated
References
- https://source.android.com/security/bulletin/2023-02-01 advisory
- https://android.googlesource.com/kernel/common/+/50d2b75b860a6495aac6127a27f75b309e91b689 patch
- https://android.googlesource.com/kernel/common/+/5844c8e7aaa946341f0d30441adc8f2cd97efbfc patch
- https://android.googlesource.com/kernel/common/+/4ea18cd059a4986a6a6f94a7f6d019b750bece65 patch
- https://android.googlesource.com/kernel/common/+/ca96bd7bf10e62eccc583726be502f219ab02c1e patch
- https://android.googlesource.com/kernel/common/+/533a88fed7d0107eff64d723d853e9a2c4a1053c patch
- https://android.googlesource.com/kernel/common/+/a1f65b39ba08a0f24bde9f07921ff48277761132 patch
- https://android.googlesource.com/kernel/common/+/3f311327f910e5c73d5bd602a80afcad371e83cd patch