In executeSetClientTarget of ComposerCommandEngine.h, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-252764410
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: google_android
Published: 2023-06-28T00:00:00
Updated: 2024-08-02T09:28:25.932Z
Reserved: 2022-11-03T00:00:00
Link: CVE-2023-21170
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-06-28T18:15:14.287
Modified: 2024-11-21T07:42:19.120
Link: CVE-2023-21170
Redhat
No data.