there is a possible use of unencrypted transport over cellular networks due to an insecure default value. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-264698379References: N/A
References
Link | Resource |
---|---|
https://source.android.com/security/bulletin/pixel/2023-06-01 | Vendor Advisory |
Configurations
History
06 Jul 2023, 13:02
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://source.android.com/security/bulletin/pixel/2023-06-01 - Vendor Advisory | |
CPE | cpe:2.3:o:google:android:-:*:*:*:*:*:*:* | |
CWE | CWE-319 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
First Time |
Google android
|
28 Jun 2023, 19:27
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-06-28 18:15
Updated : 2023-12-10 15:01
NVD link : CVE-2023-21219
Mitre link : CVE-2023-21219
CVE.ORG link : CVE-2023-21219
JSON object : View
Products Affected
- android
CWE
CWE-319
Cleartext Transmission of Sensitive Information