In executeSetClientTarget of ComposerCommandEngine.h, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-252764410
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: google_android

Published: 2023-06-28T00:00:00

Updated: 2024-08-02T09:28:25.932Z

Reserved: 2022-11-03T00:00:00

Link: CVE-2023-21170

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-06-28T18:15:14.287

Modified: 2024-11-21T07:42:19.120

Link: CVE-2023-21170

cve-icon Redhat

No data.