Vulnerability Name:

CVE-2023-21107

Assigned:2022-11-03
Published:2022-11-03
Updated:2024-06-01
Summary:In retrieveAppEntry of NotificationAccessDetails.java, there is a missing permission check. This could lead to local escalation of privilege across user boundaries with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-259385017
CVSS v3 Severity:
CVSS v2 Severity:
References:Source: MITRE
Type: CNA
CVE-2023-21107

BACK