VDB
CVE-2023-35692
CVE-2023-35692
PUBLISHED
In Google Android existieren mehrere Schwachstellen. Diese bestehen in den Komponenten "Kernel", "Kernel-Komponenten", "ARM-Komponenten", "Imagination Technologies", "MediaTek Komponenten", "Pixel", "Qualcomm-Komponenten" sowie "Qualcomm Closed-Source-Komponenten". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode mit Administratorrechten auszuführen, seine Privilegien zu erweitern, Informationen offenzulegen oder einen Denial of Service Zustand herbeizuführen. Für die Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich.
EPSS 0.01% · 2.1th percentile
Risk Scores
EPSS Score
0.01%
2.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Google Android 12 | ||
| Samsung | Samsung Android | |
| Google Android 13 | ||
| Google Android 12L | ||
| Ubuntu | Ubuntu Linux | |
| Google Android 11 |
Exploit Intelligence
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-29256 (circl)
- https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver (circl)
- CIRCL exploited: CVE-2021-29256 (circl-sighting)
- CIRCL seen: CVE-2021-29256 (circl-sighting)
- CIRCL seen: CVE-2021-29256 (circl-sighting)
- CIRCL seen: CVE-2021-29256 (circl-sighting)
Timeline
- Jul 5, 2023 CVE Published
- Jul 7, 2023 PoC Published
- Jul 15, 2023 EPSS Score
- Aug 18, 2023 EPSS Score
- Sep 6, 2023 CVE Updated
- Sep 22, 2023 EPSS Score
- Oct 26, 2023 EPSS Score
- Nov 30, 2023 EPSS Score
- Jan 3, 2024 EPSS Score
- Feb 7, 2024 EPSS Score
- Mar 12, 2024 EPSS Score
- Apr 16, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1669.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1669 advisory
- https://ubuntu.com/security/notices/USN-6348-1 advisory
- https://ubuntu.com/security/notices/USN-6315-1 advisory
- https://security.samsungmobile.com/securityUpdate.smsb advisory
- https://source.android.com/docs/security/bulletin/pixel/2023-07-01?hl=de advisory
- https://source.android.com/docs/security/bulletin/2023-07-01 advisory