CVE-2023-20760

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Jul 4, 2023

Updated: Jul 10, 2023

CWE ID 787

Summary

CVE-2023-20760 is a newly disclosed vulnerability affecting the apu component. This issue involves a missing bounds check, resulting in a possible out-of-bounds write. The consequences of this vulnerability can lead to local privilege escalation, granting System execution privileges to an attacker, making user interaction unnecessary for successful exploitation. The patch for this vulnerability is identified as ALPS07629578.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r3MIaR
https://www.cve.org/CVERecord?id=CVE-2023-20760
https://nvd.nist.gov/vuln/detail/CVE-2023-20760

Back to Vulnerability Database