Integer Overflow Vulnerability in Security Element API Allows for Local Privilege Escalation

Integer Overflow Vulnerability in Security Element API Allows for Local Privilege Escalation

CVE-2023-21370 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

In the Security Element API, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

Learn more about our Api Penetration Testing.