Google Android Information Disclosure Vulnerability (CNVD-2023-82064)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an information disclosure vulnerability that originates from a messy proxy in the openContentUri module of ActivityManagerService.java, which can be exploited by an attacker to obtain sensitive...

CVE-2023-21292

In openContentUri of ActivityManagerService.java, there is a possible way for a third party app to obtain restricted files due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2023-21292

CVE-2023-21292 affects Android’s ActivityManagerService.openContentUri, where a confused deputy could allow a third-party app to access restricted files and disclose information locally without extra execution privileges and with no user interaction. The vulnerability is described in Android’s CV...

CVE-2023-21292

In openContentUri of ActivityManagerService.java, there is a possible way for a third party app to obtain restricted files due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an information disclosure vulnerability that originates from a messy proxy in the openContentUri module of ActivityManagerService.java, which can be exploited by an attacker to obtain sensitive...

PT-2023-18071 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions prior to the August 2023 ASB Description: The issue is related to a confused deputy in the openContentUri method of ActivityManagerService.java, allowing a third-party app to obtain restricted files. This could lead to local...