CVE-2023-20758
CVSS 3.1 Score 4.4 of 10 (medium)
Details
Published Jul 4, 2023
Updated: Jul 10, 2023
CWE ID 787
Summary
CVE-2023-20758 is a memory corruption vulnerability affecting the cmdq software. This issue arises due to a missing bounds check, which can lead to local denial of service attacks. Notably, these attacks can be executed with System execution privileges, making them particularly dangerous. No user interaction is required for exploitation, heightening the potential threat to affected systems. The patch for this vulnerability is identified as ALPS07636133, and the issue was tracked as ALPS07636130.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Android