CVE-2023-20846
CVSS 3.1 Score 4.2 of 10 (medium)
Details
Published Sep 4, 2023
Updated: Sep 7, 2023
CWE ID 125
Summary
CVE-2023-20846 is a vulnerability affecting the imgsys_cmdq component. It involves a missing range check leading to a possible out-of-bounds read. This issue could result in local information disclosure, requiring System execution privileges. User interaction is necessary for an attacker to exploit this vulnerability. The patch ID is ALPS07354023, and the issue ID is ALPS07340098.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Android
- Linux Kernel
Affected Vendors
- LINUX
- Linux Foundation
- Mediatek Inc.