CVE-2023-21123

Опубликовано: 15 июн. 2023

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 7.8

Описание

In multiple functions of multiple files, there is a possible way to bypass the DISALLOW_DEBUGGING_FEATURES restriction for tracing due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-270050064

Релиз	Статус	Примечание
bionic	ignored	end of standard support
devel	ignored
esm-apps/bionic	ignored
esm-apps/focal	ignored
esm-apps/jammy	ignored
esm-apps/noble	ignored
focal	ignored
jammy	ignored
kinetic	ignored	end of life, was needs-triage
lunar	ignored	end of life, was needs-triage

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
devel	ignored
esm-apps/bionic	ignored
esm-apps/focal	ignored
esm-apps/jammy	ignored
esm-apps/noble	ignored
esm-apps/xenial	ignored
focal	ignored
jammy	ignored
kinetic	ignored	end of life, was needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 0%

0.00003

Низкий

7.8 High

CVSS3

Связанные уязвимости

CVE-2023-21123

CVSS3: 7.8

nvd

больше 2 лет назад

GHSA-834w-wr98-fx86

CVSS3: 7.8

github

больше 2 лет назад

EPSS

Процентиль: 0%

0.00003

Низкий

7.8 High

CVSS3

CVE-2023-21123

Описание

Пакет android-framework-23

Пакет android-platform-frameworks-base

Ссылки на источники

Связанные уязвимости