ASB-A-270050191 — Vulnetix

ASB-A-270050191 PUBLISHED

In various functions of various files, there is a possible way to bypass the DISALLOW_DEBUGGING_FEATURES restriction for tracing due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Affected Products

Vendor	Product	Versions
platform	packages/apps/Traceur	13-next:0, 13-next, 11:0

Timeline

Jun 1, 2023 CVE Published
May 8, 2026 CVE Updated

References

https://source.android.com/security/bulletin/2023-06-01 advisory
https://android.googlesource.com/platform/packages/apps/Traceur/+/0cbd2103660d24abec9064f6a343151eb405b156 patch

Open in Interactive Console →