CVE-2023-21251

Posted on by admin

CVE-2023-21251

In onCreate of ConfirmDialog.java, there is a possible way to connect to VNP bypassing user’s consent due to improper input validation. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.

Source: CVE-2023-21251

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다