CVE-2023-21151

CVSS Score of 10 (low)

Details

Published Jun 28, 2023

Updated: Jun 30, 2023

CWE ID 787

Summary

CVE-2023-21151 is a vulnerability found in the Google BMS kernel module, impacting Android versions using the Android kernel. This vulnerability allows for a potential out-of-bounds write through a heap buffer overflow, potentially leading to local privilege escalation. Exploitation does not require user interaction but requires system execution privileges. There are no specific remediation steps provided, and no references are available for further information. The vulnerability has a CVSS base score of 6.7, indicating a medium severity level. The impact on confidentiality, integrity, and availability is rated as high.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database