CVE-2023-21085
https://notcve.org/view.php?id=CVE-2023-21085
In nci_snd_set_routing_cmd of nci_hmsgs.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-264879662 • https://source.android.com/security/bulletin/2023-04-01 • CWE-787: Out-of-bounds Write •
CVE-2023-21087
https://notcve.org/view.php?id=CVE-2023-21087
In PreferencesHelper.java, an uncaught exception may cause the device to get stuck in a boot loop. This could lead to local persistent denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-261723753 • https://source.android.com/security/bulletin/2023-04-01 •
CVE-2023-21089
https://notcve.org/view.php?id=CVE-2023-21089
In startInstrumentation of ActivityManagerService.java, there is a possible way to keep the foreground service alive while the app is in the background. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-237766679 • https://source.android.com/security/bulletin/2023-04-01 •
CVE-2023-21097
https://notcve.org/view.php?id=CVE-2023-21097
In toUriInner of Intent.java, there is a possible way to launch an arbitrary activity due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-261858325 • https://source.android.com/security/bulletin/2023-04-01 • CWE-610: Externally Controlled Reference to a Resource in Another Sphere •
CVE-2023-20950
https://notcve.org/view.php?id=CVE-2023-20950
In AlarmManagerActivity of AlarmManagerActivity.java, there is a possible way to bypass background activity launch restrictions via a pendingIntent. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12LAndroid ID: A-195756028 • https://source.android.com/security/bulletin/2023-04-01 • CWE-863: Incorrect Authorization •