VDB

CISA-2023-21095

CISA-2023-21095 PUBLISHED

Reported by google_android · Published June 15, 2023

In canStartSystemGesture of RecentsAnimationDeviceState.java, there is a possible partial lockscreen bypass due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12L Android-13Android ID: A-242704576

Affected Products

VendorProductVersions
n/aAndroidAndroid-12L Android-13
n/aAndroidAndroid-12L Android-13, Android-12L Android-13

Timeline

  • Jun 15, 2023 CVE Published
  • Dec 18, 2024 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›