Lucene search

K
vulnrichmentGoogle_androidVULNRICHMENT:CVE-2023-21252
HistoryOct 06, 2023 - 6:48 p.m.

CVE-2023-21252

2023-10-0618:48:40
google_android
github.com
wificonfigurationutil
boot loop
input validation
denial of service
local
exploitation

AI Score

6.9

Confidence

High

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

In validatePassword of WifiConfigurationUtil.java, there is a possible way to get the device into a boot loop due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

AI Score

6.9

Confidence

High

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

Related for VULNRICHMENT:CVE-2023-21252