CVE-2023-21248

In getAvailabilityStatus of WifiScanningMainSwitchPreferenceController.java, there is a possible way to bypass a device policy restriction due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not...

CVE-2023-21248

CVE-2023-21248 affects Android’s WifiScanningMainSwitchPreferenceController.java. The issue is a missing permission check in getAvailabilityStatus, which could bypass a device policy restriction and enable local escalation of privilege without additional execution privileges. Exploitation details...

Google Android elevation of privilege vulnerability (CNVD-2023-60903)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability due to a missing privilege check in getAvailabilityStatus of WifiScanningMainSwitchPreferenceController.java, which can be exploited by an attacker to gain...

ASB-A-277333746

In getAvailabilityStatus of WifiScanningMainSwitchPreferenceController.java, there is a possible way to bypass a device policy restriction due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not...