CVE-2023-20953

Name of the Vulnerable Software and Affected Versions Android versions Android-13

Description The issue is related to the onPrimaryClipChanged function in ClipboardListener.java, where incorrect UI is shown before setup completion, potentially allowing bypass of factory reset protection. This could lead to local escalation of privilege without requiring additional execution privileges. User interaction is necessary for exploitation.

Recommendations For Android version Android-13, consider restricting access to the ClipboardListener.java until a patch is available. As a temporary workaround, avoid using the onPrimaryClipChanged function in ClipboardListener.java to minimize the risk of exploitation.