CVE-2023-20774

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Jul 4, 2023

Updated: Jul 10, 2023

CWE ID 125

Summary

CVE-2023-20774 is a newly identified vulnerability affecting the display component. It involves a missing bounds check, which could result in an out-of-bounds read. This issue grants an attacker the ability to escalate privileges up to System execution level without requiring user interaction. The vulnerability has been assigned the patch ID ALPS07292228 and issue ID ALPS07292228. To mitigate this risk, it is recommended that affected systems are promptly updated with the available patch.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r3MIZz
https://www.cve.org/CVERecord?id=CVE-2023-20774
https://nvd.nist.gov/vuln/detail/CVE-2023-20774

Back to Vulnerability Database