CVE-2023-21183
- EPSS 0.1%
- Veröffentlicht 28.06.2023 18:15:14
- Zuletzt bearbeitet 21.11.2024 07:42:20
In ForegroundUtils of ForegroundUtils.java, there is a possible way to read NFC tag data while the app is still in the background due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileg...
CVE-2023-21184
- EPSS 0.1%
- Veröffentlicht 28.06.2023 18:15:14
- Zuletzt bearbeitet 21.11.2024 07:42:20
In getCurrentPrivilegedPackagesForAllUsers of CarrierPrivilegesTracker.java, there is a possible permission bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User...
CVE-2023-21185
- EPSS 0.09%
- Veröffentlicht 28.06.2023 18:15:14
- Zuletzt bearbeitet 21.11.2024 07:42:20
In multiple functions of WifiNetworkFactory.java, there is a missing permission check. This could lead to local escalation of privilege from the guest user with no additional execution privileges needed. User interaction is not needed for exploitatio...
CVE-2023-21066
- EPSS 0.51%
- Veröffentlicht 28.06.2023 18:15:13
- Zuletzt bearbeitet 21.11.2024 07:42:05
In cd_CodeMsg of cd_codec.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: Andr...
CVE-2023-21146
- EPSS 0.1%
- Veröffentlicht 28.06.2023 18:15:13
- Zuletzt bearbeitet 21.11.2024 07:42:16
there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndro...
CVE-2023-21147
- EPSS 0.1%
- Veröffentlicht 28.06.2023 18:15:13
- Zuletzt bearbeitet 21.11.2024 07:42:16
In lwis_i2c_device_disable of lwis_device_i2c.c, there is a possible UAF due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitatio...
CVE-2023-21148
- EPSS 0.09%
- Veröffentlicht 28.06.2023 18:15:13
- Zuletzt bearbeitet 21.11.2024 07:42:16
In BuildSetConfig of protocolimsbuilder.cpp, there is a possible out of bounds read due to a missing null check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation....
CVE-2023-21149
- EPSS 0.09%
- Veröffentlicht 28.06.2023 18:15:13
- Zuletzt bearbeitet 21.11.2024 07:42:16
In registerGsmaServiceIntentReceiver of ShannonRcsService.java, there is a possible way to activate/deactivate RCS service due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges nee...
CVE-2023-21150
- EPSS 0.09%
- Veröffentlicht 28.06.2023 18:15:13
- Zuletzt bearbeitet 21.11.2024 07:42:16
In handle_set_parameters_ctrl of hal_socket.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploi...
CVE-2023-21151
- EPSS 0.1%
- Veröffentlicht 28.06.2023 18:15:13
- Zuletzt bearbeitet 21.11.2024 07:42:16
In the Google BMS kernel module, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product:...