2 matches found
CVE-2023-21222
In loaddtdata of storage.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
CVE-2023-21222
CVE-2023-21222 : In the Android kernel, the vulnerability is in the function that parses device tree data (storage.c: load_dt_data). A missing bounds check can trigger an out-of-bounds write, enabling local escalation of privilege with System execution privileges required. User interaction is not...