VDB

CESS-2023-21063

CESS-2023-21063 PUBLISHED CVSS 6.7 MEDIUM

In ParseWithAuthType of simdata.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-243129862References: N/A

Risk Scores

CVSS 3.1
6.7
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Timeline

  • Mar 24, 2023 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›