CVE-2023-20823

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Published Sep 4, 2023

Updated: Sep 7, 2023

CWE ID 125

Summary

CVE-2023-20823 is a vulnerability affecting the cmdq software, where an incorrect status check can result in a possible out-of-bounds read. This issue could potentially lead to local denial of service and even system execution, without requiring user interaction. The exploitation of this vulnerability necessitates System execution privileges. The patch ID for addressing this issue is ALPS08021592, making it crucial for organizations using cmdq to apply the patch as soon as possible to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sP-WBA
https://www.cve.org/CVERecord?id=CVE-2023-20823
https://nvd.nist.gov/vuln/detail/CVE-2023-20823

Back to Vulnerability Database