CVSS 3.1 Score 5.5 of 10 (medium)


Published Oct 30, 2023
Updated: Nov 2, 2023


CVE-2023-21365 is a vulnerability that affects various products, including Contacts, Phone app, and others. The vulnerability could lead to a local denial of service in the Phone app by causing a crash loop due to resource exhaustion. Exploitation does not require user interaction but requires user execution privileges. The potential danger this vulnerability poses to organizations is a disruption of phone services and potential loss of availability for affected devices. To remediate the vulnerability, users should apply patches or updates provided by the product vendors as they become available.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-21365 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options