CVE-2023-21383

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Oct 30, 2023

Updated: Nov 3, 2023

Summary

CVE-2023-21383 is a vulnerability affecting the Settings feature of a certain application. Users may inadvertently send extra data due to an ambiguous prompt, potentially resulting in local information disclosure. No additional execution privileges are required for exploitation, and user interaction is necessary for the attack to succeed.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s4-Acq
https://www.cve.org/CVERecord?id=CVE-2023-21383
https://nvd.nist.gov/vuln/detail/CVE-2023-21383

Back to Vulnerability Database