Lucene search

K
cve[email protected]CVE-2023-44129
HistorySep 27, 2023 - 3:19 p.m.

CVE-2023-44129

2023-09-2715:19:37
CWE-926
web.nvd.nist.gov
12
22
cve
2023
44129
vulnerability
lg
messaging app
arbitrary content provider access
nvd
android
security
intent forwarding

3.6 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N

4.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

The vulnerability is that the Messaging (“com.android.mms”) app patched by LG forwards attacker-controlled intents back to the attacker in the exported “com.android.mms.ui.QClipIntentReceiverActivity” activity. The attacker can abuse this functionality by launching this activity and then sending a broadcast with the “com.lge.message.action.QCLIP” action. The attacker can send, e.g., their own data/clipdata and set Intent.FLAG_GRANT_* flags. After the attacker received that intent in the “onActivityResult()” method, they would have access to arbitrary content providers that have the android:grantUriPermissions="true" flag set.

Affected configurations

NVD
Node
googleandroidRange12.013.0
AND
lgv60_thin_q_5gMatch-
CPENameOperatorVersion
google:androidgoogle androidle13.0

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "LG V60 Thin Q 5G(LMV600VM)",
    "vendor": "LG Electronics",
    "versions": [
      {
        "lessThanOrEqual": "13",
        "status": "affected",
        "version": "Android 12",
        "versionType": "Android"
      }
    ]
  }
]

Social References

More

3.6 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N

4.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

Related for CVE-2023-44129