CVE-2023-21236

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Jun 28, 2023

Updated: Jul 6, 2023

CWE ID 787

Summary

CVE-2023-21236 is a vulnerability affecting the Android kernel. In the function "aoc_service_set_read_blocked" within the file "aoc.c," a missing bounds check allows for a possible out-of-bounds write. This issue could potentially enable local privilege escalation with System execution privileges, making user interaction unnecessary for exploitation. The product impacted by this vulnerability is the Android operating system. No references for further information have been provided.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/roKIJY
https://www.cve.org/CVERecord?id=CVE-2023-21236
https://nvd.nist.gov/vuln/detail/CVE-2023-21236

Back to Vulnerability Database

CVE-2023-21236

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations