PT-2023-22933 · Google · Android 13+3
Heechan Kim
+1
·
Published
2023-09-05
·
Updated
2023-09-08
·
CVE-2023-30730
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Camera versions prior to 11.0.16.43 in Android 11
Camera versions 12.0.07.53 through 12.1.03.10 in Android 12
Camera versions 13.0.01.43 through 13.1.00.83 in Android 13
Description
The issue allows a local attacker to access specific files due to an implicit intent hijacking vulnerability in the Camera application.
Recommendations
For versions prior to 11.0.16.43 in Android 11, update to version 11.0.16.43 or later.
For versions 12.0.07.53 through 12.1.03.10 in Android 12, update to a version later than 12.1.03.10.
For versions 13.0.01.43 through 13.1.00.83 in Android 13, update to a version later than 13.1.00.83.
As a temporary workaround, consider restricting access to the Camera application until a patch is available.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Android 11
Android 12
Android 13
Camera