CVE-2023-30678

Summary

CVE-2023-30678 is a newly disclosed vulnerability affecting the Calendar application in Android 13 prior to version 12.4.07.15. This issue could potentially enable attackers to traverse outside the intended directory structure of a zip file, potentially allowing them to write arbitrary files. Successful exploitation of this vulnerability could lead to significant data leakage or unauthorized access to sensitive information stored on the affected device. Users are advised to update their Calendar application to the latest version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.