admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 10:41:43 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2023/CVE-2023-20938.md

20 lines
955 B
Markdown
Raw Normal View History

Update CVE sources 2024-06-07 17:53
2024-06-07 17:53:02 +00:00
### [CVE-2023-20938](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20938)
![](https://img.shields.io/static/v1?label=Product&message=Android&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Elevation%20of%20privilege&color=brighgreen)
### Description
In binder_transaction_buffer_release of binder.c, there is a possible use after free due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-257685302References: Upstream kernel
### POC
#### Reference
No PoCs from references.
#### Github
Update CVE sources 2024-08-09 18:54
2024-08-09 18:54:21 +00:00
- https://github.com/Clock-Skew/EndPointX
Update CVE sources 2024-06-07 17:53
2024-06-07 17:53:02 +00:00
- https://github.com/IamAlch3mist/Awesome-Android-Vulnerability-Research
Update CVE sources 2024-07-25 21:25
2024-07-25 21:25:12 +00:00
- https://github.com/xairy/linux-kernel-exploitation
Update CVE sources 2024-06-07 17:53
2024-06-07 17:53:02 +00:00
Reference in New Issue Copy Permalink