CVE-2023-21351

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Oct 30, 2023

Updated: Aug 16, 2024

Summary

CVE-2023-21351 is a newly identified vulnerability affecting multiple locations. It stems from a logic error in the code, which could allow for local privilege escalation without requiring any additional execution privileges. Notably, user interaction is not a prerequisite for exploitation, making this a significant threat to system security. This issue could potentially enable attackers to gain elevated access to affected systems, increasing the risk of data theft or unauthorized system modifications.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s4_ol_
https://www.cve.org/CVERecord?id=CVE-2023-21351
https://nvd.nist.gov/vuln/detail/CVE-2023-21351

Back to Vulnerability Database