admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-06-07 13:36:56 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2023/CVE-2023-213xx/CVE-2023-21343.json

100 lines
2.8 KiB
JSON
Raw Normal View History

Auto-Update: 2023-10-30T19:00:25.146181+00:00
2023-10-30 19:00:28 +00:00
{
"id": "CVE-2023-21343",
"sourceIdentifier": "security@android.com",
"published": "2023-10-30T17:15:50.437",
Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00
"lastModified": "2024-11-21T07:42:40.973",
Auto-Update: 2024-09-06T22:00:17.582193+00:00
2024-09-06 22:03:17 +00:00
"vulnStatus": "Modified",
Auto-Update: 2024-07-14T02:00:17.787041+00:00
2024-07-14 02:06:08 +00:00
"cveTags": [],
Auto-Update: 2023-10-30T19:00:25.146181+00:00
2023-10-30 19:00:28 +00:00
"descriptions": [
{
"lang": "en",
"value": "In ActivityStarter, there is a possible background activity launch due to an unsafe PendingIntent. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
Auto-Update: 2023-11-07T00:55:19.621584+00:00
2023-11-07 00:55:23 +00:00
},
{
"lang": "es",
"value": "En ActivityStarter, existe un posible inicio de actividad en segundo plano debido a un PendingIntent inseguro. Esto podr\u00eda conducir a una escalada local de privilegios sin necesidad de permisos de ejecuci\u00f3n adicionales. La interacci\u00f3n del usuario no es necesaria para la explotaci\u00f3n."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00
"baseScore": 7.8,
"baseSeverity": "HIGH",
Auto-Update: 2023-11-07T00:55:19.621584+00:00
2023-11-07 00:55:23 +00:00
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00
"availabilityImpact": "HIGH"
Auto-Update: 2023-11-07T00:55:19.621584+00:00
2023-11-07 00:55:23 +00:00
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
Auto-Update: 2024-09-06T22:00:17.582193+00:00
2024-09-06 22:03:17 +00:00
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-269"
}
]
Auto-Update: 2023-11-07T00:55:19.621584+00:00
2023-11-07 00:55:23 +00:00
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:*:*:*:*:*:*:*:*",
"versionEndExcluding": "14.0",
"matchCriteriaId": "530F3220-8957-4F6C-9790-2D4A4CC4122B"
}
]
}
]
Auto-Update: 2023-10-30T19:00:25.146181+00:00
2023-10-30 19:00:28 +00:00
}
],
"references": [
{
"url": "https://source.android.com/docs/security/bulletin/android-14",
Auto-Update: 2023-11-07T00:55:19.621584+00:00
2023-11-07 00:55:23 +00:00
"source": "security@android.com",
"tags": [
"Release Notes",
"Vendor Advisory"
]
Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00
},
{
"url": "https://source.android.com/docs/security/bulletin/android-14",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Release Notes",
"Vendor Advisory"
]
Auto-Update: 2023-10-30T19:00:25.146181+00:00
2023-10-30 19:00:28 +00:00
}
]
}
Reference in New Issue Copy Permalink