The vulnerability allows a low privileged user that have access to the device when locked in Kiosk mode to install an arbitrary Android application and leverage it to have access to critical device settings such as the device power management or eventually the device secure settings (ADB debug).
References
Link | Resource |
---|---|
https://psirt.bosch.com/security-advisories/BOSCH-SA-175607.html | Mitigation Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: bosch
Published: 2023-10-25T13:07:15.053Z
Updated: 2023-10-25T13:07:15.053Z
Reserved: 2023-10-18T09:35:22.486Z
Link: CVE-2023-45844
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-10-25T18:17:35.347
Modified: 2023-11-06T14:39:14.153
Link: CVE-2023-45844
JSON object: View
Redhat Information
No data.
CWE