In (TBD) of (TBD), there is a possible way to bypass the lockscreen due to Biometric Auth Failure. This could lead to local escalation of privilege with physical access to the device with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-240428519References: N/A
References
Link | Resource |
---|---|
https://source.android.com/security/bulletin/pixel/2023-01-01 | Vendor Advisory |
Configurations
History
01 Feb 2023, 20:16
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.8 |
References | (MISC) https://source.android.com/security/bulletin/pixel/2023-01-01 - Vendor Advisory | |
First Time |
Google android
|
|
CWE | CWE-287 | |
CPE | cpe:2.3:o:google:android:-:*:*:*:*:*:*:* |
26 Jan 2023, 21:18
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-01-26 21:18
Updated : 2023-12-10 14:48
NVD link : CVE-2023-20924
Mitre link : CVE-2023-20924
CVE.ORG link : CVE-2023-20924
JSON object : View
Products Affected
- android
CWE
CWE-287
Improper Authentication