CVE-2023-30916

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 12, 2023

Updated: Jul 19, 2023

CWE ID 862

Summary

CVE-2023-30916 is a vulnerability affecting the DMService component. It involves a missing permission check, which could be exploited by an attacker to escalate privileges locally without requiring any additional execution privileges. This issue may allow unauthorized access or modification to sensitive data or system configurations. Organizations using the affected product are advised to apply the available patch or implement mitigations to prevent potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r9rU5i
https://www.cve.org/CVERecord?id=CVE-2023-30916
https://nvd.nist.gov/vuln/detail/CVE-2023-30916

Back to Vulnerability Database