CVE-2023-21255

In multiple functions of binder.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVSS v3 7.8 HIGH

7.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://android.googlesource.com/kernel/common/+/1ca1130ec62d	Patch
https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html	Mailing List Third Party Advisory
https://security.netapp.com/advisory/ntap-20240119-0010/
https://source.android.com/security/bulletin/2023-07-01	Patch Vendor Advisory
https://www.debian.org/security/2023/dsa-5480	Third Party Advisory
https://android.googlesource.com/kernel/common/+/1ca1130ec62d	Patch
https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html	Mailing List Third Party Advisory
https://security.netapp.com/advisory/ntap-20240119-0010/
https://source.android.com/security/bulletin/2023-07-01	Patch Vendor Advisory
https://www.debian.org/security/2023/dsa-5480	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

Configuration 2 (hide)

OR	cpe:2.3:o:debian:debian_linux:10.0:::::::*
	cpe:2.3:o:debian:debian_linux:11.0:::::::*

History

13 Feb 2025, 17:16

Type	Values Removed	Values Added
Summary	(en) In multiple functions of binder.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.	(en) In multiple functions of binder.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Information

Published : 2023-07-13 00:15

Updated : 2025-02-13 17:16

NVD link : CVE-2023-21255

Mitre link : CVE-2023-21255

CVE.ORG link : CVE-2023-21255

JSON object : View

Products Affected

debian

debian_linux

google

android

CWE

CWE-416

Use After Free

CWE-787

Out-of-bounds Write

{"id": "CVE-2023-21255", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2023-07-13T00:15:24.053", "references": [{"url": "https://android.googlesource.com/kernel/common/+/1ca1130ec62d", "tags": ["Patch"], "source": "security@android.com"}, {"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html", "tags": ["Mailing List", "Third Party Advisory"], "source": "security@android.com"}, {"url": "https://security.netapp.com/advisory/ntap-20240119-0010/", "source": "security@android.com"}, {"url": "https://source.android.com/security/bulletin/2023-07-01", "tags": ["Patch", "Vendor Advisory"], "source": "security@android.com"}, {"url": "https://www.debian.org/security/2023/dsa-5480", "tags": ["Third Party Advisory"], "source": "security@android.com"}, {"url": "https://android.googlesource.com/kernel/common/+/1ca1130ec62d", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html", "tags": ["Mailing List", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://security.netapp.com/advisory/ntap-20240119-0010/", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://source.android.com/security/bulletin/2023-07-01", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.debian.org/security/2023/dsa-5480", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-416"}, {"lang": "en", "value": "CWE-787"}]}], "descriptions": [{"lang": "en", "value": "In multiple functions of binder.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."}], "lastModified": "2025-02-13T17:16:02.643", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:google:android:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F8B9FEC8-73B6-43B8-B24E-1F7C20D91D26"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"}, {"criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED"}], "operator": "OR"}]}], "sourceIdentifier": "security@android.com"}