Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-32873


In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08583919; Issue ID: ALPS08304227.


Published

2024-05-06T03:15:09.387

Last Modified

2025-03-13T22:15:13.450

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.7 (MEDIUM)

Weaknesses
  • Type: Secondary
    CWE-787
  • Type: Primary
    CWE-787

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System google android 12.0 Yes
Operating System google android 13.0 Yes
Operating System google android 14.0 Yes
Hardware mediatek mt6761 - No
Hardware mediatek mt6765 - No
Hardware mediatek mt6768 - No
Hardware mediatek mt6833 - No
Hardware mediatek mt6853 - No
Hardware mediatek mt6855 - No
Hardware mediatek mt6893 - No
Hardware mediatek mt6895 - No
Hardware mediatek mt6983 - No
Hardware mediatek mt8321 - No
Hardware mediatek mt8385 - No
Hardware mediatek mt8755 - No
Hardware mediatek mt8765 - No
Hardware mediatek mt8766 - No
Hardware mediatek mt8768 - No
Hardware mediatek mt8771 - No
Hardware mediatek mt8781 - No
Hardware mediatek mt8786 - No
Hardware mediatek mt8788 - No
Hardware mediatek mt8789 - No
Hardware mediatek mt8791t - No
Hardware mediatek mt8792 - No
Hardware mediatek mt8795t - No
Hardware mediatek mt8796 - No

References