In notification access permission dialog box, malicious application can embedded a very long service label that overflow the original user prompt and possibly contains mis-leading information to be appeared as a system message for user confirmation.
References
Link | Resource |
---|---|
https://source.android.com/security/bulletin/aaos/2023-07-01 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: google_android
Published: 2023-07-13T00:01:32.075Z
Updated: 2023-07-13T00:01:32.075Z
Reserved: 2022-11-03T22:37:50.653Z
Link: CVE-2023-21260
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-07-13T01:15:08.667
Modified: 2023-07-20T19:04:40.987
Link: CVE-2023-21260
JSON object: View
Redhat Information
No data.
CWE