3 matches found
CVE-2023-21242
creationtimestamp| type| source ---|---|--- 2023-08-15 00:20:02+00:00| seen| https://t.me/cibsecurity/68496...
CVE-2023-21242
CVE-2023-21242 affects Android’s InsecureEapNetworkHandler.isServerCertChainValid, where a logic error could allow trusting an imposter server. The root cause is in isServerCertChainValid, enabling remote escalation of privilege without additional execution privileges and with no user interaction...
CVE-2023-21242
In isServerCertChainValid of InsecureEapNetworkHandler.java, there is a possible way to trust an imposter server due to a logic error in the code. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...