CVE-2023-32865

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Dec 4, 2023

Updated: Dec 7, 2023

CWE ID 787

Summary

CVE-2023-32865 is a newly disclosed vulnerability affecting the display drm component. This issue involves an incorrect bounds check leading to a possible out-of-bounds write. The consequence of this vulnerability is a local privilege escalation, granting the attacker System execution privileges. Notably, user interaction is not required for exploitation, making it potentially dangerous in various attack scenarios. The recommended solution is to apply the patch with ID ALPS07363456.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tqmpXF
https://www.cve.org/CVERecord?id=CVE-2023-32865
https://nvd.nist.gov/vuln/detail/CVE-2023-32865

Back to Vulnerability Database