CVE-2023-34934

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jun 28, 2023

Updated: Jul 5, 2023

CWE ID 787

Summary

CVE-2023-21171 is a vulnerability affecting Android versions 13, where in the InputDispatcher.cpp file, there exists a potential side channel information disclosure issue in the verifyInputEvent function. This vulnerability can be exploited to conduct click fraud, potentially resulting in local privilege escalation, granting attackers System execution privileges, without requiring user interaction.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

New H3C Technologies Co. Ltd.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rzNAWr
https://www.cve.org/CVERecord?id=CVE-2023-34934
https://nvd.nist.gov/vuln/detail/CVE-2023-34934

Back to Vulnerability Database

CVE-2023-34934

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations