Vulnerability Description
In Oppo's battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used.
CVSS Score
7.8
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Android | 11.0 | |
| Oppo | Oppo A12 | - |
| Oppo | Oppo A15 | - |
| Oppo | Oppo A15S | - |
| Oppo | Oppo A31 | - |
| Oppo | Oppo A33 | - |
| Oppo | Oppo A5 2020 | - |
| Oppo | Oppo A52 | - |
| Oppo | Oppo A53 | - |
| Oppo | Oppo A54 5G | - |
| Oppo | Oppo A73 5G | - |
| Oppo | Oppo A74 5G | - |
| Oppo | Oppo A9 2020 | - |
| Oppo | Oppo A91 | - |
| Oppo | Oppo A92 | - |
| Oppo | Oppo A93 | - |
| Oppo | Oppo A94 | - |
| Oppo | Oppo F11 Pro | - |
| Oppo | Oppo Find X | - |
| Oppo | Oppo Find X Lamborghini | - |
References
- https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-143738962723655Vendor Advisory
- https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-143738962723655Vendor Advisory
FAQ
What is CVE-2021-23243?
CVE-2021-23243 is a vulnerability with a CVSS score of 7.8 (HIGH). In Oppo's battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used.
How severe is CVE-2021-23243?
CVE-2021-23243 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-23243?
Check the references section above for vendor advisories and patch information. Affected products include: Google Android, Oppo Oppo A12, Oppo Oppo A15, Oppo Oppo A15S, Oppo Oppo A31.