CVE-2023-20904 in Androidinfo

Zusammenfassung

von MITRE • 26.01.2023

In getTrampolineIntent of SettingsActivity.java, there is a possible launch of arbitrary activity due to an Intent mismatch in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12L Android-13Android ID: A-246300272

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservieren

03.11.2022

Veröffentlichung

26.01.2023

Moderieren

akzeptiert

Eintrag

VDB-219496

CPE

bereit

EPSS

0.00136

KEV

nein

Aktivitäten

very low

Quellen

Might our Artificial Intelligence support you?

Check our Alexa App!