CVE-2023-32816
CVSS 3.1 Score 4.4 of 10 (medium)
Details
Published Sep 4, 2023
Updated: Sep 7, 2023
CWE ID 125
Summary
CVE-2023-32816 is a vulnerability affecting the gnss service where input validation is insufficient, resulting in an out-of-bounds read. This issue can lead to local information disclosure, and it requires System execution privileges to exploit. No user interaction is necessary for attackers to take advantage of this flaw. The recommended patch for this vulnerability is ALPS08044040, and it addresses the related issue with ID ALPS08044032.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Android