CVE-2023-45781

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Dec 4, 2023

Updated: Dec 22, 2023

CWE ID 125

Summary

CVE-2023-45781 is a vulnerability affecting the parse_gap_data function in utils.cc. This issue involves a missing bounds check, resulting in a potential out-of-bounds read. If exploited, this vulnerability could lead to local information disclosure. Importantly, exploitation does not require user interaction, making it a significant concern for systems with User execution privileges.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s-6Uyj
https://www.cve.org/CVERecord?id=CVE-2023-45781
https://nvd.nist.gov/vuln/detail/CVE-2023-45781

Back to Vulnerability Database