In Settings, there is a possible way to control private DNS settings from a secondary user due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://source.android.com/docs/security/bulletin/android-14 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: google_android
Published: 2023-10-30T16:56:29.479Z
Updated: 2024-09-06T20:09:38.853Z
Reserved: 2022-11-03T22:37:50.657Z
Link: CVE-2023-21311
Vulnrichment
Updated: 2024-08-02T09:36:32.946Z
NVD
Status : Analyzed
Published: 2023-10-30T17:15:48.453
Modified: 2023-11-06T17:54:31.117
Link: CVE-2023-21311
Redhat
No data.