Vulnerability Description
In add of WifiNetworkSuggestionsManager.java, there is a possible way to trigger permanent DoS due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Android | 11.0 |
Related Weaknesses (CWE)
References
- https://android.googlesource.com/platform/packages/modules/Wifi/+/8827591ae680c4
- https://android.googlesource.com/platform/packages/modules/Wifi/+/d7df9d633c2726
- https://source.android.com/security/bulletin/2023-07-01
- https://android.googlesource.com/platform/packages/modules/Wifi/+/8827591ae680c4
- https://android.googlesource.com/platform/packages/modules/Wifi/+/d7df9d633c2726
- https://source.android.com/security/bulletin/2023-07-01
FAQ
What is CVE-2023-20910?
CVE-2023-20910 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In add of WifiNetworkSuggestionsManager.java, there is a possible way to trigger permanent DoS due to resource exhaustion. This could lead to local denial of service with no additional execution privi...
How severe is CVE-2023-20910?
CVE-2023-20910 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-20910?
Check the references section above for vendor advisories and patch information. Affected products include: Google Android.