Rewterz Threat Alert – North Korea Linked Konni APT Group – Active IOCs
December 7, 2023Rewterz Threat Alert – The Fake Security Advisory Promotes the Installation of Backdoor Plugins for WordPress – Active IOCs
December 8, 2023Rewterz Threat Alert – North Korea Linked Konni APT Group – Active IOCs
December 7, 2023Rewterz Threat Alert – The Fake Security Advisory Promotes the Installation of Backdoor Plugins for WordPress – Active IOCs
December 8, 2023Severity
High
Analysis Summary
CVE-2023-45773 CVSS:7.8
Google Android could allow a local authenticated attacker to gain elevated privileges on the system, caused by an out-of-bounds write in multiple functions in the btm_ble_gap.cc script. By sending a specially crafted request, an attacker could exploit this vulnerability to gain elevated privileges on the system.
CVE-2023-45774 CVSS:8.4
Google Android could allow a local attacker to gain elevated privileges on the system, caused by a confused deputy in fixUpIncomingShortcutInfo in the ShortcutService.java script. By sending a specially crafted request, an attacker could exploit this vulnerability to gain elevated privileges on the system.
CVE-2023-45775 CVSS:8.4
Google Android could allow a local attacker to gain elevated privileges on the system, caused by an out-of-bounds write in CreateAudioBroadcast in the broadcaster.cc script. By sending a specially crafted request, an attacker could exploit this vulnerability to gain elevated privileges on the system.
CVE-2023-45776 CVSS:8.4
Google Android could allow a local attacker to gain elevated privileges on the system, caused by an out-of-bounds write in CreateAudioBroadcast in the broadcaster.cc script. By sending a specially crafted request, an attacker could exploit this vulnerability to gain elevated privileges on the system.
CVE-2023-45777 CVSS:8.4
Google Android could allow a local attacker to gain elevated privileges on the system, caused by a parcel mismatch in the checkKeyIntentParceledCorrectly in the AccountManagerService.java script. By sending a specially crafted request, an attacker could exploit this vulnerability to gain elevated privileges on the system.
CVE-2023-45779 CVSS:8.4
Google Android could allow a local attacker to gain elevated privileges on the system, caused by improperly-used cryptography in Unisoc components. By sending a specially crafted request, an attacker could exploit this vulnerability to gain elevated privileges on the system.
CVE-2023-45781 CVSS:5.5
Google Android could allow a local authenticated attacker to obtain sensitive information, caused by missing bounds checks in the parse_gap_data in the utils.cc script. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information and use this information to launch further attacks against the affected system.
CVE-2023-40098 CVSS:6.2
Google Android could allow a local attacker to obtain sensitive information, caused by logic errors in mOnDone in the NotificationConversationInfo.java script. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain app notification data and use this information to launch further attacks against the affected system.
CVE-2023-40073 CVSS:6.2
Google Android could allow a local attacker to obtain sensitive information, caused by a confused deputy in visitUris of Notification.java. By executing a specially crafted application, an attacker could exploit this vulnerability to obtain sensitive information and use this information to launch further attacks against the affected system.
CVE-2023-40092 CVSS:6.2
Google Android Framework could allow a local attacker to obtain sensitive information, caused by a confused deputy in verifyShortcutInfoPackage in the ShortcutService.javascript. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain other users’ images and use this information to launch further attacks against the affected system.
Impact
- Privileges Escalation
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2023-45773
- CVE-2023-45774
- CVE-2023-45775
- CVE-2023-45776
- CVE-2023-45777
- CVE-2023-45779
- CVE-2023-45781
- CVE-2023-40098
- CVE-2023-40073
- CVE-2023-40092
Affected Vendors
Affected Products
- Google Android 12
- Google Android 11
- Google Android 12L
- Google Android 13
- Google Android 14
Remediation
Refer to the Android Open Source Project for patch, upgrade or suggested workaround information.