In ca-certificates, there is a possible way to read encrypted TLS data due to untrusted cryptographic certificates. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Metrics
Affected Vendors & Products
References
History
Mon, 16 Dec 2024 20:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Google
Google android |
|
CPEs | cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:* cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:* cpe:2.3:o:google:android:12.1:*:*:*:*:*:*:* cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:* |
|
Vendors & Products |
Google
Google android |
MITRE
Status: PUBLISHED
Assigner: google_android
Published: 2024-02-15T22:31:14.778Z
Updated: 2024-08-02T18:24:55.545Z
Reserved: 2023-08-09T02:29:31.021Z
Link: CVE-2023-40104
Vulnrichment
Updated: 2024-08-02T18:24:55.545Z
NVD
Status : Analyzed
Published: 2024-02-15T23:15:08.017
Modified: 2024-12-16T19:33:26.077
Link: CVE-2023-40104
Redhat
No data.