CVE-2023-30930

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jul 12, 2023

Updated: Jul 19, 2023

CWE ID 862

Summary

CVE-2023-30930 is a newly identified vulnerability affecting telephony services. The issue arises from a missing permission check within the system. An attacker can exploit this flaw to gain unauthorized access to local information without requiring any additional execution privileges. This vulnerability poses a significant risk, as sensitive data could be exposed, potentially leading to privacy breaches or further exploitation. It is crucial that affected organizations apply the necessary patches or mitigations to prevent potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r9sPT0
https://www.cve.org/CVERecord?id=CVE-2023-30930
https://nvd.nist.gov/vuln/detail/CVE-2023-30930

Back to Vulnerability Database