Improper Input Validation in PhoneAccountRegistrar.java Allows Local Denial of Service

Improper Input Validation in PhoneAccountRegistrar.java Allows Local Denial of Service

CVE-2023-21111 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

In several functions of PhoneAccountRegistrar.java, there is a possible way to prevent an access to emergency services due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-256819769

Learn more about our Cis Benchmark Audit For Google Android.