3 matches found
CVE-2023-20920
In queue of UsbRequest.java, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-...
CVE-2023-20920
In queue of UsbRequest.java, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-...
CVE-2023-20920
CVE-2023-20920 describes a memory corruption vulnerability in the UsbRequest.java queue of Android, caused by a use-after-free. Affects Android 10–13 according to the Android security bulletin references. Impact is local escalation of privilege with high severity (CVSS: LO-CI). The vulnerability ...