In gatt_process_prep_write_rsp of gatt_cl.cc, there is a possible privilege escalation due to a use after free. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. User interaction is not needed for exploitation.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: google_android
Published: 2023-09-11T20:09:51.810Z
Updated: 2024-08-02T16:30:43.908Z
Reserved: 2023-06-15T02:50:10.272Z
Link: CVE-2023-35658
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-09-11T21:15:41.660
Modified: 2023-09-14T02:18:53.670
Link: CVE-2023-35658
Redhat
No data.