Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-32849


In cmdq, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08161758; Issue ID: ALPS08161758.


Published

2023-12-04T04:15:07.757

Last Modified

2024-11-21T08:04:10.987

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.7 (MEDIUM)

Weaknesses
  • Type: Primary
    CWE-787

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System google android 11.0 Yes
Operating System google android 12.0 Yes
Operating System google android 13.0 Yes
Hardware mediatek mt6781 - No
Hardware mediatek mt6785 - No
Hardware mediatek mt6833 - No
Hardware mediatek mt6853 - No
Hardware mediatek mt6873 - No
Hardware mediatek mt6885 - No
Hardware mediatek mt6889 - No
Hardware mediatek mt6893 - No
Hardware mediatek mt8765 - No
Hardware mediatek mt8766 - No
Hardware mediatek mt8768 - No
Hardware mediatek mt8781 - No
Hardware mediatek mt8786 - No
Hardware mediatek mt8788 - No
Hardware mediatek mt8791 - No
Hardware mediatek mt8791t - No
Hardware mediatek mt8797 - No
Hardware mediatek mt8798 - No

References