GSD-2023-21103 — Vulnetix

GSD-2023-21103 PUBLISHED CVSS 5.5 MEDIUM

In registerPhoneAccount of PhoneAccountRegistrar.java, uncaught exceptions in parsing persisted user data could lead to local persistent denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-259064622

Risk Scores

CVSS v3.1

5.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

Vendor	Product	Versions
n/a	Android	Android-11 Android-12 Android-12L Android-13

Timeline

Aug 11, 2022 CVE Published

References

https://source.android.com/security/bulletin/2023-05-01 url

Open in Interactive Console →