CVE-2023-42723

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Dec 4, 2023

Updated: Dec 7, 2023

CWE ID 125

Summary

CVE-2023-42723 is a newly disclosed vulnerability affecting the camera service. The issue stems from a missing bounds check, resulting in a potential out-of-bounds read. Exploitation of this flaw could lead to a local denial of service without the need for additional execution privileges. This vulnerability poses a significant risk, especially in environments where camera services are widely used. Mitigation measures include applying the available patch or implementing access controls to limit potential damage.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/srAC6s
https://www.cve.org/CVERecord?id=CVE-2023-42723
https://nvd.nist.gov/vuln/detail/CVE-2023-42723

Back to Vulnerability Database