Data Authenticity Verification Bypass Vulnerability in Android Q(10), R(11), and S(12)

Data Authenticity Verification Bypass Vulnerability in Android Q(10), R(11), and S(12)

CVE-2023-21441 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Insufficient Verification of Data Authenticity vulnerability in Routine prior to versions 2.6.30.6 in Android Q(10), 3.1.21.10 in Android R(11) and 3.5.2.23 in Android S(12) allows local attacker to access protected files via unused code.

Learn more about our Cis Benchmark Audit For Google Android.