CVE-2023-20817

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Aug 7, 2023

Updated: Aug 9, 2023

CWE ID 787

Summary

CVE-2023-20817 is a newly identified vulnerability affecting the wlan service. This issue involves an out-of-bounds write caused by insufficient input validation. Malicious actors can exploit this flaw to gain local privilege escalation, ultimately leading to System execution privileges. User interaction is not required for successful exploitation. The patch for this vulnerability is identified as ALPS07453600.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sP3Zw2
https://www.cve.org/CVERecord?id=CVE-2023-20817
https://nvd.nist.gov/vuln/detail/CVE-2023-20817

Back to Vulnerability Database