CVE-2023-40101Detail
This CVE file has been updated once NVD enrichment efforts are completed. The enrichment data provided by the NVD may require a modification due to these modifications.
Description
In the collapse of canonicalize_md.c, there is a reading of possible limits due to a checking the missing limits. This could result in disclosure of local information without any necessary additional execution privilege. User interaction is not necessary for operation.
Metric
NVD enrichment efforts refer to information accessible to the public to associate vector channels. The CVSS information provided by other sources is also displayed.
References to opinions, solutions and tools
By selecting these links, you will leave Nist Webspace. We have provided these links to other websites because they may have information that would interest you. No induction should be drawn due to other referenced sites, or not, from this page. There may be other more appropriate websites for your goal. The NIST does not necessarily approve of the points of view expressed, nor agree with the facts presented on these sites. In addition, the NIST does not approve of any commercial product which can be mentioned on these sites. Please respond to comments on this page for [email protected].
Low enumeration
| Cwe-Id | CWE name | Source |
|---|---|---|
|
CWE-125 |
Read limits |
Nist |
Fast information
Entrance to the CVE dictionary:
CVE-2023-40101
NVD published Date:
30/10/2023
Last NVD modified:
21/11/2024
Source:
Android (associated with Google Inc. or Open Handsset Alliance)
