National Cyber Warfare Foundation (NCWF) Forums


CVE-2023-40130


0 user ratings
2023-10-27 22:17:31
milo
CVEs

 - archive -- 
In onBindingDied of CallRedirectionProcessor.java, there is a possible permission bypass due to a logic error in the code. This could lead to local escalation of privilege and background activity launch with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-40130
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-40130
In onBindingDied of CallRedirectionProcessor.java, there is a possible permission bypass due to a logic error in the code. This could lead to local escalation of privilege and background activity launch with no additional execution privileges needed. User interaction is not needed for exploitation.
2023-10-27T21:15:08Z

Source: CVEAnnouncements
Source Link: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-40130


Comments
new comment
Nobody has commented yet. Will you be the first?
 
Forum
CVEs



Copyright 2012 through 2024 - National Cyber Warfare Foundation - All rights reserved worldwide.