3 matches found
CVE-2023-20947
In getGroupState of GrantPermissionsViewModel.kt, there is a possible way to keep a one-time permission granted due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
CVE-2023-20947
CVE-2023-20947 is an Elevation of Privilege vulnerability in Android affecting the getGroupState function in GrantPermissionsViewModel.kt. The issue can allow a local attacker with low privileges to bypass permission handling and keep a one-time permission granted, enabling local escalation witho...
CVE-2023-20947
In getGroupState of GrantPermissionsViewModel.kt, there is a possible way to keep a one-time permission granted due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...