CVE-2023-21131

Name of the Vulnerable Software and Affected Versions Android versions Android-11 through Android-13

Description A logic error in the checkKeyIntentParceledCorrectly() function of ActivityManagerService.java can lead to a bypass of Parcel Mismatch mitigations. This issue could result in local escalation of privilege, allowing the launch of arbitrary activities in settings without requiring additional execution privileges. User interaction is not necessary for exploitation.

Recommendations For Android versions Android-11 through Android-13, at the moment, there is no information about a newer version that contains a fix for this vulnerability.