Lucene search
K

4 matches found

NVD
NVD
added 2023/12/04 11:15 p.m.18 views

CVE-2023-45774

In fixUpIncomingShortcutInfo of ShortcutService.java, there is a possible way to view another user's image due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS0.00124EPSS
Exploits0References2
Prion
Prion
added 2023/12/04 11:15 p.m.22 views

Privilege escalation

In fixUpIncomingShortcutInfo of ShortcutService.java, there is a possible way to view another user's image due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

4.3CVSS7.3AI score0.00124EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/04 10:40 p.m.9 views

CVE-2023-45774

In fixUpIncomingShortcutInfo of ShortcutService.java, there is a possible way to view another user's image due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.1AI score0.00124EPSS
Exploits0References2
CVE
CVE
added 2023/12/04 10:40 p.m.130 views

CVE-2023-45774

CVE-2023-45774 affects the Android Shortcuts framework: In fixUpIncomingShortcutInfo of ShortcutService.java, an attacker could view another user’s image due to a confused deputy, enabling local elevation of privilege with no user interaction. Exploitation status is not detailed in the provided d...

7.8CVSS7.7AI score0.00124EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder