CVE-2023-30926

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jul 12, 2023

Updated: Jul 19, 2023

CWE ID 862

Summary

CVE-2023-30926 is a vulnerability affecting the opm service, which involves a missing permission check. Hackers can exploit this flaw to disclose local information without requiring any additional execution privileges. This issue poses a risk to the confidentiality of data handled by the affected service. Organizations using opm service are advised to apply the necessary patches or mitigations to prevent potential data leaks. Failure to address this vulnerability could result in unintended information exposure.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r9rwKb
https://www.cve.org/CVERecord?id=CVE-2023-30926
https://nvd.nist.gov/vuln/detail/CVE-2023-30926

Back to Vulnerability Database