CVE-2023-40074

Summary

In saveToXml of PersistableBundle.java, invalid data could lead to local persistent denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

Affected Software

VendorProductVersion RangeStatus
GoogleAndroid13affected
GoogleAndroid12Laffected
GoogleAndroid12affected
GoogleAndroid11affected

Weaknesses

  • Denial of service

ADP Enrichment

CVE Program Container

Additional References

References