Security Advisory

CVE-2023-20956

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-03-24 00:00:00

Last updated 2025-02-25 16:33:44

Assigner google_android

State PUBLISHED

Description

In Import of C2SurfaceSyncObj.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12 Android-12L Android-13Android ID: A-240140929

← Browse all CVEs View on cve.org ↗