CVE-2023-21224

Name of the Vulnerable Software and Affected Versions Android kernel

Description The issue is related to a heap buffer overflow in the ss ProcessReturnResultComponent function of ss MmConManagement.c, which could lead to a possible out of bounds read. This might result in remote information disclosure without requiring additional execution privileges. User interaction is not necessary for exploitation.

Recommendations For Android kernel, consider applying a patch to fix the heap buffer overflow issue in the ss ProcessReturnResultComponent function as a permanent solution. As a temporary workaround, restrict access to sensitive information that could be disclosed through this issue until a patch is available.