Android Multiple Vulnerabilities
RISK: Medium Risk
TYPE: Operating Systems - Mobile & Apps
Multiple vulnerabilities were identified in Android. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution and sensitive information disclosure on the targeted system.
Note:
There are indications that CVE-2023-35674 may be under limited, targeted exploitation. CVE-2023-35674 is a vulnerability in the Android Framework which allows attackers to escalate privileges without the need for user interaction or additional execution privilege.
Impact
- Denial of Service
- Remote Code Execution
- Elevation of Privilege
- Information Disclosure
System / Technologies affected
- Android security patch level prior to 2023-09-05
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor:
https://source.android.com/docs/security/bulletin/2023-09-01
Vulnerability Identifier
- CVE-2023-35658
- CVE-2023-35664
- CVE-2023-35665
- CVE-2023-35666
- CVE-2023-35667
- CVE-2023-35669
- CVE-2023-35670
- CVE-2023-35671
- CVE-2023-35673
- CVE-2023-35674
- CVE-2023-35675
- CVE-2023-35676
- CVE-2023-35677
- CVE-2023-35679
- CVE-2023-35680
- CVE-2023-35681
- CVE-2023-35682
- CVE-2023-35683
- CVE-2023-35684
- CVE-2023-35687
Source
Related Link
Related Tags
Share with