Home

CVE-2021-0308

Description

In ReadLogicalParts of basicmbr.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-8.1, Android-9, Android-10, Android-11, Android-8.0; Android ID: A-158063095.

Risk Information

Base Score
6.8
MODERATE
Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.079

Associated Vulnerability

VulnerabilityOS Platform
gdisk security update (RLSA-2022:7700) gdisk-1.0.3-11.el8.x86_64.rpmLinux
(RHSA-2022:7700)Moderate: security update gdisk-1.0.3-11.el8.x86_64.rpmLinux
(RHSA-2022:7700)Moderate: security update gdisk-debuginfo-1.0.3-11.el8.x86_64.rpmLinux
(RHSA-2022:7700)Moderate: security update gdisk-debugsource-1.0.3-11.el8.x86_64.rpmLinux
Gdisk update (ELSA-2022-7700) gdisk-1.0.3-11.el8.x86_64.rpmLinux
Moderate: gdisk security update gdisk-1.0.3-11.el8.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234