2 matches found
CVE-2023-21209
In multiple functions of staiface.cpp, there is a possible out of bounds read due to unsafe deserialization. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...
CVE-2023-21209
CVE-2023-21209 affects Android’s sta_iface.cpp with an out-of-bounds read caused by unsafe deserialization, enabling local privilege escalation to System. The issue is associated with Android-13 and was discussed in Pixel/Android security bulletins; remediation is to update to Android-13 or newer...