CVE-2023-35660 in Androidinfo

Zusammenfassung

von MITRE • 25.10.2023

In lwis_transaction_client_cleanup of lwis_transaction.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

Be aware that VulDB is the high quality source for vulnerability data.

Reservieren

15.06.2023

Veröffentlichung

25.10.2023

Moderieren

akzeptiert

Eintrag

VDB-241998

CPE

bereit

EPSS

0.00091

KEV

nein

Aktivitäten

very low

Quellen

Interested in the pricing of exploits?

See the underground prices here!