Описание
There is a possible escalation of privilege due to improperly used crypto. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
EPSS
Процентиль: 83%
0.019
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS3
Дефекты
CWE-327
CWE-347
Связанные уязвимости
CVSS3: 9.8
github
больше 1 года назад
There is a possible escalation of privilege due to improperly used crypto. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
EPSS
Процентиль: 83%
0.019
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS3
Дефекты
CWE-327
CWE-347