CVE-2023-21486

MEDIUM Year: 2023
CVSS v3 Score
4.6
Medium
Weakness Type
CWE-926
View all →

Vulnerability Description

Improper export of android application components vulnerability in ImagePreviewActivity in Call Settings to SMR May-2023 Release 1 allows physical attackers to access some media data stored in sandbox.

Related Vulnerabilities

CVE-2023-21485

MEDIUM
CVSS:4.6(Medium)

Improper export of android application components vulnerability in VideoPreviewActivity in Call Settings to SMR May-2023 Release 1 allows physical attackers to access some media data stored in sandbox...

CWE-9262023

CVE-2023-41823

MEDIUM
CVSS:4.4(Medium)

An improper export vulnerability was reported in the Motorola Phone Extension application, that could allow a local attacker to execute unauthorized Activities.

CWE-9262023

CVE-2023-41822

MEDIUM
CVSS:4.8(Medium)

An improper export vulnerability was reported in the Motorola Interface Test Tool application that could allow a malicious local application to execute OS commands.

CWE-9262023

CVE-2023-41816

MEDIUM
CVSS:5.0(Medium)

An improper export vulnerability was reported in the Motorola Services Main application that could allow a local attacker to write to a local database.

CWE-9262023

CVE-2023-41821

MEDIUM
CVSS:5.0(Medium)

A an improper export vulnerability was reported in the Motorola Setup application that could allow a local attacker to read sensitive user information.

CWE-9262023

CVE-2023-41829

MEDIUM
CVSS:5.0(Medium)

An improper export vulnerability was reported in the Motorola Carrier Services application that could allow a malicious, local application to read files without authorization.

CWE-9262023