CVE-2023-21272

Description

In readFrom of Uri.java, there is a possible bad URI permission grant due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

NVD
Severity: HIGH
CVE ID: CVE-2023-21272
CVSS Score: 7.8
CVSS Metrics: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Refrence: NVD MITRE

Proof Of Concept

Trinadh465

Refrence: GitHub

pazhanivel07

Refrence: GitHub

Content on GitHub

nidhi7598 | watchers:0

frameworks_base_AOSP_06_r22_CVE-2023-21272

Refrence: GitHub

Description​

Proof Of Concept​

Content on GitHub​

Description

Proof Of Concept

Content on GitHub