CVE-2023-21339

In Minikin, there is a possible way to trigger ANR by showing a malicious message due to resource exhaustion. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
References
Link Resource
https://source.android.com/docs/security/bulletin/android-14 Release Notes Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:o:google:android:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2023-10-30 17:15

Updated : 2023-11-07 00:44


NVD link : CVE-2023-21339

Mitre link : CVE-2023-21339

CVE.ORG link : CVE-2023-21339


JSON object : View

Products Affected

google

  • android