CVSS Score of 10 (low)


Published Jun 28, 2023
Updated: Jun 30, 2023
CWE ID 400


CVE-2023-21176 is a vulnerability that affects Android versions up to Android-13. The vulnerability exists in the list_key_entries function of and can lead to the disabling of user credentials due to resource exhaustion. This vulnerability can be exploited locally, without user interaction, but requires system execution privileges. The affected products are Android-based systems. To remediate this vulnerability, it is recommended to update to a patched version of the Android operating system when available. The potential danger posed by this vulnerability is a local denial of service attack, which could impact the availability of affected systems.

Leverage our Vulnerability Intelligence module to secure your systems now - get detailed insights on CVE-2024-37364. Book your demo today.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-21176 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options