CVE-2023-21173

Name of the Vulnerable Software and Affected Versions Android versions Android-13

Description The issue is related to a missing permission check in multiple methods of DataUsageList.java, which could allow learning about admin user's network activities. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

Recommendations For Android version Android-13, consider restricting access to the DataUsageList.java methods until a patch is available. As a temporary workaround, review and enforce proper permission checks to minimize the risk of exploitation.