exploitDog

CVE-2023-21220

Опубликовано: 28 июн. 2023

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

there is a possible use of unencrypted transport over cellular networks due to an insecure default value. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-264590585References: N/A

Ссылки

https://source.android.com/security/bulletin/pixel/2023-06-01
Vendor Advisory
https://source.android.com/security/bulletin/pixel/2023-06-01
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

EPSS

Процентиль: 58%

0.0036

Низкий

7.5 High

CVSS3

Дефекты

CWE-319

Связанные уязвимости

GHSA-4497-w4wq-c9hv

CVSS3: 7.5

github

больше 2 лет назад

there is a possible use of unencrypted transport over cellular networks due to an insecure default value. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-264590585References: N/A

EPSS

Процентиль: 58%

0.0036

Низкий

7.5 High

CVSS3

Дефекты

CWE-319