CVE-2023-42637

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 1, 2023

Updated: Nov 8, 2023

CWE ID 862

Summary

CVE-2023-42637 is a vulnerability affecting validationtools that introduces a missing permission check. This issue permits local information disclosure without requiring any additional execution privileges, posing a potential security risk. Attackers can exploit this flaw to access sensitive data within the affected system. It is essential for users to apply the necessary patches to mitigate this vulnerability and secure their systems against potential exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sqX50I
https://www.cve.org/CVERecord?id=CVE-2023-42637
https://nvd.nist.gov/vuln/detail/CVE-2023-42637

Back to Vulnerability Database