CVE-2023-30934
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Jul 12, 2023
Updated: Jul 20, 2023
CWE ID 862
Summary
CVE-2023-30934 represents a vulnerability in a telephony service where essential permission checks are missing. This issue allows unauthorized access to local information without the need for any additional execution privileges. An attacker can exploit this flaw to gain insights into the system, potentially compromising sensitive data or gaining a foothold for further attacks. This vulnerability poses a significant risk and requires immediate remediation to prevent potential data breaches or unauthorized system access.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Android