CVE-2023-48417

Name of the Vulnerable Software and Affected Versions KeyChainActivity Application (affected versions not specified)

Description The issue is related to missing permission checks, resulting in unauthorized access and manipulation in the KeyChainActivity Application. This allows an attacker to escalate privileges and manipulate KeyChain operations by sending a malicious Intent to KeyChainActivity. The vulnerability can be triggered through a malicious incoming intent.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.