CNVD-2023-69042 — Vulnetix

CNVD-2023-69042 PUBLISHED CVSS 9.300000190734863 CRITICAL

Google Android是美国谷歌（Google）公司的一套以Linux为基础的开源操作系统。 Google Android存在权限提升漏洞，该漏洞源于InsecureEapNetworkHandler.java的isServerCertChainValid模块代码中的逻辑错误，攻击者可利用此漏洞在系统上获得提升的权限。

Risk Scores

CVSS v4.0

9.300000190734863

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Products

Vendor	Product	Versions
Google	Android	13

Timeline

Nov 28, 2020 CVE Published

References

https://android.googlesource.com/platform/packages/modules/Wifi/+/72e903f258b5040b8f492cf18edd124b5a1ac770 url
https://source.android.com/security/bulletin/2023-08-01 url

Open in Interactive Console →