CVE Published: 12/07/2023 |
CVE Updated: 06/11/2024 |
CVE Year: 2023 Source: google_android |
Vendor: Google |
Product: Android Status : PUBLISHED
CVE-2023-21249 Description
In multiple functions of OneTimePermissionUserManager.java, there is a possible one-time permission retention due to a permissions bypass. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.