PT-2023-18238 · Google · Android
Published
2023-05-04
·
Updated
2023-05-10
·
CVE-2023-21485
CVSS v3.1
5.3
Medium
| Vector | AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Call Settings versions prior to SMR May-2023 Release 1
Description
The issue allows physical attackers to access some media data stored in sandbox due to an improper export of android application components vulnerability in VideoPreviewActivity.
Recommendations
For versions prior to SMR May-2023 Release 1, update to SMR May-2023 Release 1 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Android