CVE-2023-33913

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Aug 7, 2023

Updated: Aug 10, 2023

CWE ID 787

Summary

CVE-2023-33913 is a newly identified vulnerability affecting DRM/oemcrypto. The issue arises due to an incorrect calculation of buffer size, resulting in a possible out-of-bounds write. Malicious actors could exploit this flaw to gain remote escalation of privileges, requiring System execution privileges for a successful attack. This defect poses a significant risk to systems utilizing the affected software.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sOYsxr
https://www.cve.org/CVERecord?id=CVE-2023-33913
https://nvd.nist.gov/vuln/detail/CVE-2023-33913

Back to Vulnerability Database