Android Protected Confirmation Screen Bypass Vulnerability

Android Protected Confirmation Screen Bypass Vulnerability

CVE-2023-21225 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

there is a possible way to bypass the protected confirmation screen due to Failure to lock display power. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-270403821References: N/A

Learn more about our Cis Benchmark Audit For Google Android.