PUB-A-253424924 — Vulnetix

PUB-A-253424924 PUBLISHED CVSS 6.900000095367432 MEDIUM

In ConvertToHalMetadata of aidl_utils.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.

Risk Scores

CVSS v4.0

6.900000095367432

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Affected Products

Vendor	Product	Versions
Android	:unknown:	Pixel-family specific:0, Pixel-family specific, Pixel-family specific:0

Timeline

Mar 1, 2023 CVE Published
May 6, 2026 CVE Updated

References

https://source.android.com/security/bulletin/2023-03-01 advisory

Open in Interactive Console →