CVE-2023-20753

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Jul 4, 2023

Updated: Jul 7, 2023

CWE ID 787

Summary

CVE-2023-20753 is a vulnerability affecting the rpmb package. It involves a logic error leading to a possible out-of-bounds write. This issue can result in local privilege escalation, granting System execution privileges to an attacker. The exploitation of this vulnerability does not require user interaction. The patch ID for addressing this issue is ALPS07460390, and the internal issue identifier is ALPS07588667.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r3MIah
https://www.cve.org/CVERecord?id=CVE-2023-20753
https://nvd.nist.gov/vuln/detail/CVE-2023-20753

Back to Vulnerability Database