CVE-2023-38447
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Summary
CVE-2023-38447 is a newly discovered vulnerability affecting the vowifiservice component. This issue involves a missing permission check, which can result in a local denial of service without requiring any additional execution privileges. Attackers can exploit this flaw to disrupt the targeted system's functionality, leading to service disruptions and potential downtime. The precise impact on the affected component and its dependencies may vary, but the risk of a denial of service attack is significant. System administrators are advised to apply the necessary patches or updates as soon as possible to mitigate this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Android