exploitDog

CVE-2023-21403

Опубликовано: 04 дек. 2023

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

In RGXDestroyZSBufferKM of rgxta3d.c, there is a possible arbitrary code execution due to an uncaught exception. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.

Ссылки

https://source.android.com/security/bulletin/2023-12-01
Vendor Advisory
https://source.android.com/security/bulletin/2023-12-01
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

EPSS

Процентиль: 29%

0.00105

Низкий

9.8 Critical

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-2gc9-2cfg-w7jm

CVSS3: 9.8

github

около 2 лет назад

There is elevation of privilege.

EPSS

Процентиль: 29%

0.00105

Низкий

9.8 Critical

CVSS3

Дефекты

NVD-CWE-noinfo