CVE-2023-40638

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Published Oct 8, 2023

Updated: Oct 11, 2023

CWE ID 862

Summary

CVE-2023-40638 is a vulnerability affecting telecom services, where a missing permission check is present. An attacker who exploits this issue can cause a local denial of service. Notably, the attacker requires System execution privileges to successfully exploit the vulnerability. This oversight could allow unauthorized individuals to disrupt the telecom service, causing potential disruptions and downtime.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sYemiZ
https://www.cve.org/CVERecord?id=CVE-2023-40638
https://nvd.nist.gov/vuln/detail/CVE-2023-40638

Back to Vulnerability Database