CVE-2023-32852

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Published Dec 4, 2023

Updated: Dec 7, 2023

Summary

CVE-2023-32852 is a newly disclosed vulnerability affecting the cameraisp software. The issue stems from insufficient input validation, which can lead to local information disclosure. This vulnerability is significant because it allows an attacker to access sensitive data without requiring user interaction and with System execution privileges. The patch for this issue is identified as ALPS07670971. It is strongly recommended that users apply the patch as soon as possible to mitigate the risk of exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tqmpWe
https://www.cve.org/CVERecord?id=CVE-2023-32852
https://nvd.nist.gov/vuln/detail/CVE-2023-32852

Back to Vulnerability Database