2 matches found
CVE-2023-21167
In setProfileName of DevicePolicyManagerService.java, there is a possible way to crash the SystemUI menu due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
CVE-2023-21167
CVE-2023-21167 affects Android 13, in DevicePolicyManagerService.setProfileName. The issue is an out-of-bounds/ missing bounds check that can crash the SystemUI menu, causing local denial of service without extra privileges and without user interaction. Public documents consistently frame this as...