GSD-2023-21281 — Vulnetix

GSD-2023-21281 PUBLISHED

In multiple functions of KeyguardViewMediator.java, there is a possible failure to lock after screen timeout due to a logic error in the code. This could lead to local escalation of privilege across users with no additional execution privileges needed. User interaction is not needed for exploitation.

Affected Products

Vendor	Product	Versions
google	android	11, 12l, 13
Google	Android	13, 12, 11

Timeline

Nov 28, 2020 CVE Published

References

https://android.googlesource.com/platform/frameworks/base/+/badb243574d7fca9aa89152d9d25eeb4f8615385 url
https://source.android.com/security/bulletin/2023-08-01 url

Open in Interactive Console →