CVE-2023-35679
published 2023-09-11CVE-2023-35679: In MtpPropertyValue of MtpProperty.h, there is a possible out of bounds read due to uninitialized data. This could lead to local information disclosure with no…
medium5.5CVSS 3.1
AVLACLPRNUIRSUCHINAN
In MtpPropertyValue of MtpProperty.h, there is a possible out of bounds read due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| android | — | — | |
| platform | frameworks_av | >= 11:0 < 11:2023-09-01 | 11:2023-09-01 |
| platform | frameworks_av | >= 12:0 < 12:2023-09-01 | 12:2023-09-01 |
| platform | frameworks_av | >= 12L:0 < 12L:2023-09-01 | 12L:2023-09-01 |
| platform | frameworks_av | >= 13-next:0 < 13-next:2023-09-01 | 13-next:2023-09-01 |
| platform | frameworks_av | >= 13:0 < 13:2023-09-01 | 13:2023-09-01 |