CVE Published: 27/10/2023 |
CVE Updated: 09/09/2024 |
CVE Year: 2023 Source: google_android |
Vendor: Google |
Product: Android Status : PUBLISHED
CVE-2023-40138 Description
In FillUi of FillUi.java, there is a possible way to view another user\'s images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.