exploitDog

CVE-2023-20924

Опубликовано: 26 янв. 2023

Источник: nvd

CVSS3: 6.8

EPSS Низкий

Описание

In (TBD) of (TBD), there is a possible way to bypass the lockscreen due to Biometric Auth Failure. This could lead to local escalation of privilege with physical access to the device with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-240428519References: N/A

Ссылки

https://source.android.com/security/bulletin/pixel/2023-01-01
Vendor Advisory
https://source.android.com/security/bulletin/pixel/2023-01-01
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

EPSS

Процентиль: 5%

0.00023

Низкий

6.8 Medium

CVSS3

Дефекты

CWE-287

CWE-287

Связанные уязвимости

GHSA-756m-w6hw-pq9q

CVSS3: 6.8

github

около 3 лет назад

In (TBD) of (TBD), there is a possible way to bypass the lockscreen due to Biometric Auth Failure. This could lead to local escalation of privilege with physical access to the device with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-240428519References: N/A

EPSS

Процентиль: 5%

0.00023

Низкий

6.8 Medium

CVSS3

Дефекты

CWE-287

CWE-287