Lucene search
Google_androidCVELIST:CVE-2023-21253HistoryOct 06, 2023 - 6:48 p.m.
CVE-2023-21253
2023-10-0618:48:40
google_android
www.cve.org
resource exhaustion
denial of service
user interaction
0.0004 Low
EPSS
Percentile
5.1%
In multiple locations, there is a possible way to crash multiple system services due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
CNA Affected
[
{
"vendor": "Google",
"product": "Android",
"versions": [
{
"version": "13",
"status": "affected"
},
{
"version": "12L",
"status": "affected"
},
{
"version": "12",
"status": "affected"
},
{
"version": "11",
"status": "affected"
}
],
"defaultStatus": "unaffected"
}
]References
android.googlesource.com/platform/frameworks/base/+/84df68840b6f2407146e722ebd95a7d8bc6e3529
android.googlesource.com/platform/tools/apksig/+/039f815895f62c9f8af23df66622b66246f3f61e
android.googlesource.com/platform/tools/apksig/+/41d882324288085fd32ae0bb70dc85f5fd0e2be7
source.android.com/security/bulletin/2023-10-01
Related
cve
cve
CVE-2023-21253
2023-10-06 19:15:12
prion
prion
Code injection
2023-10-06 19:15:00
nvd
nvd
CVE-2023-21253
2023-10-06 19:15:12
ubuntucve
ubuntucve
CVE-2023-21253
2023-10-06 00:00:00
osv
osv