CVE-2023-21054

Name of the Vulnerable Software and Affected Versions Android kernel

Description The issue is caused by a logic error in the code of EUTRAN LCS ConvertLCS MOLRReq in LPP CommonUtil.c, leading to a possible out of bounds write. This could result in remote code execution with System execution privileges needed. User interaction is not required for exploitation.

Recommendations For Android kernel, apply the necessary patch or update to fix the logic error in EUTRAN LCS ConvertLCS MOLRReq of LPP CommonUtil.c. At the moment, there is no information about a newer version that contains a fix for this vulnerability.