CVE-2023-32788

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jul 12, 2023

Updated: Jul 19, 2023

CWE ID 862

Summary

CVE-2023-32788: A vulnerability affecting telephony services exposes local information due to a lacking permission check. No additional execution privileges are required to exploit this issue, making it a potential risk for information disclosure. This flaw could allow unauthorized access to sensitive data within the telephony system. The vulnerability needs to be addressed promptly to prevent potential data breaches. The specific impact and exploitability of this issue are still being evaluated by security researchers.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r9rU5U
https://www.cve.org/CVERecord?id=CVE-2023-32788
https://nvd.nist.gov/vuln/detail/CVE-2023-32788

Back to Vulnerability Database