CVE-2023-20935

CVSS V2 None CVSS V3 None
Description
In deserialize of multiple files, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-256589724
Overview
  • CVE ID
  • CVE-2023-20935
  • Assigner
  • security@android.com
  • Vulnerability Status
  • Undergoing Analysis
  • Published Version
  • 2023-04-19T20:15:10
  • Last Modified Date
  • 2023-04-20T13:15:27
References
History
Created Old Value New Value Data Type Notes
2023-04-19 21:01:38 Added to TrackCVE
2023-04-20 14:01:36 2023-04-20T13:15:27 CVE Modified Date updated
2023-04-20 14:01:36 Received Awaiting Analysis Vulnerability Status updated
2023-04-25 18:00:49 Awaiting Analysis Undergoing Analysis Vulnerability Status updated