CVE-2023-32827

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Oct 2, 2023

Updated: Oct 3, 2023

CWE ID 787

Summary

CVE-2023-32827 is a newly disclosed vulnerability affecting camera middleware. The issue involves a missing input validation, which can result in an out-of-bounds write. Consequences of this vulnerability include local privilege escalation with the requirement for System execution privileges. Notably, user interaction is not necessary for exploitation, making this a significant security concern. The patch for this issue is identified as ALPS07993539.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s2tUCs
https://www.cve.org/CVERecord?id=CVE-2023-32827
https://nvd.nist.gov/vuln/detail/CVE-2023-32827

Back to Vulnerability Database