CVE-2023-21208

Name of the Vulnerable Software and Affected Versions Android version Android-13

Description In the setCountryCodeInternal function of sta iface.cpp, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.

Recommendations For Android version Android-13, update to a version that includes the fix for the issue in setCountryCodeInternal of sta iface.cpp. As a temporary workaround, consider restricting access to sensitive information to minimize the risk of exploitation.